Memory Exhaustion Vulnerability in Trend Micro Antivirus for Mac 2021
CVE-2021-25227

3.3LOW

Key Information:

Vendor: Trend Micro
Status: Trend Micro Antivirus For Mac
Vendor: CVE Published:; 4 February 2021

Summary

Trend Micro Antivirus for Mac 2021 is susceptible to a memory exhaustion flaw that compromises its scanning capabilities. This vulnerability requires that an attacker gains low-privileged access to the target system. Once exploited, it can disable the critical scanning functionality of the antivirus, leaving the system exposed to further threats.

Affected Version(s)

Trend Micro Antivirus for Mac 2021 (v11)

References

https://helpcenter.trendmicro.com/en-us/article/TMKA-10191

x_refsource_MISC

https://www.zerodayinitiative.com/advisories/ZDI-21-102/

x_refsource_MISC

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Feb 4, 2021
Vulnerability Reserved
Jan 15, 2021