CVE-2021-45442

Click the icon to Follow me:- twitterTelegramRedditDiscord

Summary:

A link following denial-of-service vulnerability in Trend Micro Worry-Free Business Security (on prem only) could allow a local attacker to overwrite arbitrary files in the context of SYSTEM. This is similar to, but not the same as CVE-2021-44024. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Reference Links(if available):

  • https://success.trendmicro.com/solution/000289996
  • https://www.zerodayinitiative.com/advisories/ZDI-22-015/
  • CVSS Score (if available)

    v2: / HIGH

    v3: /

    Links to Exploits(if available)

  • Available for Amazon Prime