CVE-2025-30641

High CVSS: 7.8

A link following vulnerability in the anti-malware solution portion of Trend Micro Deep Security 20.0 agents could allow a local attacker to escalate privileges on affected installations.

Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Vendor

Trendmicro

Product

Deep Security Agent

CWE

CWE-59

Yayın Tarihi

2025-06-17 21:15:37

Güncelleme

2025-09-09 14:45:46

Source Identifier

security@trendmicro.com

KEV Date Added

Kategoriler

CWE-59 Deep Security Agent HIGH Trendmicro 2025

Referanslar

https://success.trendmicro.com/en-US/solution/KA-0019344 https://www.zerodayinitiative.com/advisories/ZDI-25-240/

Benzer Kayıtlar

High

CVE-2025-69259

A message unchecked NULL return value vulnerability in Trend Micro Apex Central could allow a remote attacker to create…

High

CVE-2025-69260

A message out-of-bounds read vulnerability in Trend Micro Apex Central could allow a remote attacker to create a denial-…

Critical

CVE-2025-69258

A LoadLibraryEX vulnerability in Trend Micro Apex Central could allow an unauthenticated remote attacker to load an atta…

Critical

CVE-2025-54987

A vulnerability in Trend Micro Apex One (on-premise) management console could allow a pre-authenticated remote attacker…

Critical

CVE-2025-54948

A vulnerability in Trend Micro Apex One (on-premise) management console could allow a pre-authenticated remote attacker…

High

CVE-2025-53378

A missing authentication vulnerability in Trend Micro Worry-Free Business Security Services (WFBSS) agent could have all…