Local Privilege Escalation Vulnerability in Trend Micro Security 17.8
CVE-2025-52521

7.8HIGH

Key Information:

Vendor

Trend Micro
Status
Trend Micro Security (consumer)
Vendor
CVE Published:
10 July 2025

What is CVE-2025-52521?

Trend Micro Security 17.8 for consumers contains a vulnerability that enables local privilege escalation, potentially allowing an unauthorized user to delete critical files of the Trend Micro application. This could disrupt the security operations of the software, leading to potential data loss or exposure.

Affected Version(s)

Trend Micro Security (Consumer) 17.8 < 17.8.1476

References

https://helpcenter.trendmicro.com/en-us/article/tmka-18876
https://www.zerodayinitiative.com/advisories/ZDI-25-585/

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.