Trend Micro Password Manager (Consumer) Link Following Privilege Escalation Vulnerability

Trend Micro Password Manager (Consumer) Link Following Privilege Escalation Vulnerability

CVE-2022-30523 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Trend Micro Password Manager (Consumer) version 5.0.0.1266 and below is vulnerable to a Link Following Privilege Escalation Vulnerability that could allow a low privileged local attacker to delete the contents of an arbitrary folder as SYSTEM which can then be used for privilege escalation on the affected machine.

Learn more about our Web Application Penetration Testing UK.