CVE-2022-26319
CVE-2022-26319
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
08 Mar 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An installer search patch element vulnerability in Trend Micro Portable Security 3.0 Pro, 3.0 and 2.0 could allow a local attacker to place an arbitrarily generated DLL file in an installer folder to elevate local privileges. Please note: an attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.
Affected products
Trend Micro · Trend Micro Portable SecurityWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →