CVE-2021-43771

7.8HIGH

Key Information:

Vendor: Trend Micro
Status: Trend Micro Antivirus For Mac 2021
Vendor: CVE Published:; 30 November 2021

Summary

Trend Micro Antivirus for Mac 2021 v11 (Consumer) is vulnerable to an improper access control privilege escalation vulnerability that could allow an attacker to establish a connection that could lead to full local privilege escalation within the application. Please note that an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Affected Version(s)

Trend Micro Antivirus for MAC 2021 11.0

References

https://helpcenter.trendmicro.com/en-us/article/TMKA-10832

x_refsource_MISC

https://www.zerodayinitiative.com/advisories/ZDI-21-1320/

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 30, 2021
Vulnerability Reserved
Nov 16, 2021