cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-28394,https://securityvulnerability.io/vulnerability/CVE-2022-28394,DLL Loading Vulnerability in Trend Micro Password Manager by Trend Micro Incorporated,"The installer for the Trend Micro Password Manager (Consumer) versions 3.7.0.1223 and earlier has a vulnerability related to the DLL search path. This issue allows for insecure loading of Dynamic Link Libraries (DLLs), which could be exploited by attackers to execute malicious code. Users are strongly encouraged to update to the latest supported version (5.x) to mitigate associated risks.",Trend Micro,Trend Micro Password Manager,7.8,HIGH,0.0011099999537691474,false,,false,false,false,,,false,false,,2022-05-27T00:15:00.000Z,0
CVE-2022-30523,https://securityvulnerability.io/vulnerability/CVE-2022-30523,Link Following Privilege Escalation in Trend Micro Password Manager,"The Trend Micro Password Manager, specifically versions up to 5.0.0.1266, suffers from a Link Following Privilege Escalation vulnerability. This flaw allows a local attacker with low privileges to exploit the software and gain SYSTEM-level access to delete the contents of an arbitrary folder. This capability could potentially lead to further privilege escalation on the affected machine, providing attackers with elevated permissions and access to sensitive information. Users of affected versions are advised to apply necessary security patches and updates available from Trend Micro.",Trend Micro,Trend Micro Password Manager,7.8,HIGH,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-05-16T14:45:13.000Z,0
CVE-2022-26337,https://securityvulnerability.io/vulnerability/CVE-2022-26337,Uncontrolled Search Path Element Vulnerability in Trend Micro Password Manager,"The Trend Micro Password Manager (Consumer) versions up to and including 5.0.0.1262 are susceptible to an Uncontrolled Search Path Element vulnerability. This issue may allow an attacker to exploit the system by employing a specially crafted file, potentially leading to local privilege escalation on the affected device. Users are advised to update to the latest version to mitigate the risks associated with this vulnerability.",Trend Micro,Trend Micro Password Manager,7.8,HIGH,0.0006300000241026282,false,,false,false,false,,,false,false,,2022-03-08T21:55:14.000Z,0
CVE-2021-32462,https://securityvulnerability.io/vulnerability/CVE-2021-32462,Remote Code Execution Vulnerability in Trend Micro Password Manager,"Trend Micro Password Manager versions 5.0.0.1217 and earlier are vulnerable to an Exposed Hazardous Function Remote Code Execution flaw. This vulnerability can be exploited by unauthenticated attackers to manipulate the registry, potentially enabling unauthorized privilege escalation to SYSTEM on affected installations. Although authentication is required, this vulnerability poses significant security risks if successfully exploited.",Trend Micro,Trend Micro Password Manager,8.8,HIGH,0.00610999995842576,false,,false,false,false,,,false,false,,2021-07-08T10:54:26.000Z,0
CVE-2021-32461,https://securityvulnerability.io/vulnerability/CVE-2021-32461,Integer Truncation Privilege Escalation in Trend Micro Password Manager,"The Trend Micro Password Manager (Consumer) versions up to 5.0.0.1217 are susceptible to an Integer Truncation vulnerability that can lead to privilege escalation. This vulnerability allows a local attacker with the ability to execute low-privileged code to exploit the system. By triggering a buffer overflow, the attacker may gain elevated privileges, potentially compromising sensitive information within the affected installations. It is crucial for users to ensure their software is updated to mitigate this risk.",Trend Micro,Trend Micro Password Manager,7.8,HIGH,0.0005000000237487257,false,,false,false,false,,,false,false,,2021-07-08T10:54:25.000Z,0
CVE-2021-28647,https://securityvulnerability.io/vulnerability/CVE-2021-28647,DLL Hijacking Vulnerability in Trend Micro Password Manager,"Trend Micro Password Manager version 5 (Consumer) is affected by a DLL hijacking vulnerability that enables attackers to insert a malicious DLL file during the software installation process. When this occurs, the compromised DLL can execute unauthorised code on the user's system each time they install a program, leading to potential security breaches and unauthorized access to sensitive information.",Trend Micro,Trend Micro Password Manager,7.8,HIGH,0.0006300000241026282,false,,false,false,false,,,false,false,,2021-04-13T12:55:39.000Z,0
CVE-2020-8469,https://securityvulnerability.io/vulnerability/CVE-2020-8469,DLL Hijacking Vulnerability in Trend Micro Password Manager for Windows,"The Trend Micro Password Manager for Windows version 5.0 is affected by a security vulnerability that allows attackers to exploit DLL hijacking. This may enable unauthorized privilege escalation, posing risks to users and the overall security of their systems. Prompt updates and protective measures are recommended to mitigate the impact of this vulnerability.",Trend Micro,Trend Micro Password Manager For Windows,7.8,HIGH,0.000699999975040555,false,,false,false,false,,,false,false,,2020-03-12T23:05:15.000Z,0
CVE-2019-19696,https://securityvulnerability.io/vulnerability/CVE-2019-19696,Localhost Key Exposure in Trend Micro Password Manager for Windows and macOS,"A vulnerability exists in Trend Micro Password Manager for Windows and macOS that allows unauthorized access to the localhost.key file associated with RootCA.crt. This exposure can enable attackers to create malicious self-signed SSL certificates. As a result, they could redirect users to phishing websites, compromising sensitive information and undermining user trust in security protocols.",Trend Micro,Trend Micro Password Manager,5.5,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2020-01-18T00:15:00.000Z,0
CVE-2019-15625,https://securityvulnerability.io/vulnerability/CVE-2019-15625,Memory Usage Vulnerability in Trend Micro Password Manager,"A memory usage vulnerability exists in Trend Micro Password Manager 3.8, which provides potential access for an attacker to sensitive information stored in the victim's memory processes. If exploited, this vulnerability could allow malicious entities with adequate permissions to extract confidential data, thereby compromising user security and privacy.",Trend Micro,Trend Micro Password Manager,5.5,MEDIUM,0.000750000006519258,false,,false,false,false,,,false,false,,2020-01-18T00:15:00.000Z,0
CVE-2019-15629,https://securityvulnerability.io/vulnerability/CVE-2019-15629,FLAG_MISUSE Vulnerability in Trend Micro Password Manager for Android,"The Trend Micro Password Manager for Android suffers from a FLAG_MISUSE vulnerability that potentially allows malicious third-party applications to access sensitive information shared by the password manager. This issue affects versions 3.x, 5.0, and 5.1, increasing the risk of unauthorized data exposure. Users are advised to be cautious of the apps installed on their devices and to ensure they are using the latest version of the software to safeguard their personal information.",Trend Micro,Trend Micro Password Manager For Android,7.5,HIGH,0.0016799999866634607,false,,false,false,false,,,false,false,,2019-11-25T21:01:19.000Z,0
CVE-2019-14687,https://securityvulnerability.io/vulnerability/CVE-2019-14687,DLL Hijacking Vulnerability in Trend Micro Password Manager,"A vulnerability exists in Trend Micro Password Manager 5.0 that can be exploited through DLL hijacking. This allows an attacker to load an arbitrary unsigned DLL into a process of the signed service. If successfully exploited, this vulnerability could give attackers the ability to execute malicious code, potentially compromising the integrity and security of the affected system.",Trend Micro,Trend Micro Password Manager,7.8,HIGH,0.000699999975040555,false,,false,false,false,,,false,false,,2019-08-20T13:30:51.000Z,0
CVE-2019-14684,https://securityvulnerability.io/vulnerability/CVE-2019-14684,DLL Hijacking Vulnerability in Trend Micro Password Manager,"A DLL hijacking vulnerability has been identified in Trend Micro Password Manager 5.0, which allows attackers to exploit the service by loading an arbitrary unsigned DLL into the process of the signed service. If successfully executed, it can lead to unauthorized access and manipulation of sensitive information. Users are urged to apply necessary updates and follow security best practices to mitigate the risks associated with this vulnerability.",Trend Micro,Trend Micro Password Manager,7.8,HIGH,0.0013000000035390258,false,,false,false,false,,,false,false,,2019-08-20T13:30:04.000Z,0