FLAG_MISUSE Vulnerability in Trend Micro Password Manager for Android
CVE-2019-15629

7.5HIGH

Key Information:

Vendor: Trend Micro
Status: Trend Micro Password Manager For Android
Vendor: CVE Published:; 25 November 2019

Summary

The Trend Micro Password Manager for Android suffers from a FLAG_MISUSE vulnerability that potentially allows malicious third-party applications to access sensitive information shared by the password manager. This issue affects versions 3.x, 5.0, and 5.1, increasing the risk of unauthorized data exposure. Users are advised to be cautious of the apps installed on their devices and to ensure they are using the latest version of the software to safeguard their personal information.

Affected Version(s)

Trend Micro Password Manager for Android Version 3.x, 5.0, 5.1

References

https://esupport.trendmicro.com/en-us/home/pages/technica...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 25, 2019
Vulnerability Reserved
Aug 26, 2019