var-202301-1474
Vulnerability from variot
A vulnerability exists in Trend Micro Maximum Security 2022 (17.7) wherein a low-privileged user can write a known malicious executable to a specific location and in the process of removal and restoral an attacker could replace an original folder with a mount point to an arbitrary location, allowing a escalation of privileges on an affected system. Virus Buster from Trend Micro Inc. An update for the cloud has been released. This vulnerability information is provided by the developer for the purpose of dissemination to product users. JPCERT/CC Report to JPCERT/CC Coordinated with the developer.The potential impact will vary for each vulnerability, but you may be impacted by: Please refer to the respective advisory provided by the developer for details. Cloud version 17.7 It was * Arbitrary file deletion due to link interpretation problem when accessing file in data erasure tool - CVE-2022-30687 It was * Privilege escalation due to link interpretation problems when accessing files - CVE-2022-34893 It was * Information Disclosure via Out-of-Bounds Read Vulnerability - CVE-2022-35234 , CVE-2022-37347 , CVE-2022-37348 It was * Time-of-check Time-of-use (( TOCTOU ) Privilege escalation due to race condition vulnerability - CVE-2022-48191 virus buster Cloud version 17.0 It was * Information Disclosure via Out-of-Bounds Read Vulnerability - CVE-2022-35234 , CVE-2022-37347 , CVE-2022-37348. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.The specific flaw exists within the Damage Cleanup Engine. The issue results from the lack of proper locking when performing file operations. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", affected_products: { "@id": "https://www.variotdbs.pl/ref/affected_products", }, credits: { "@id": "https://www.variotdbs.pl/ref/credits", }, cvss: { "@id": "https://www.variotdbs.pl/ref/cvss/", }, description: { "@id": "https://www.variotdbs.pl/ref/description/", }, exploit_availability: { "@id": "https://www.variotdbs.pl/ref/exploit_availability/", }, external_ids: { "@id": "https://www.variotdbs.pl/ref/external_ids/", }, iot: { "@id": "https://www.variotdbs.pl/ref/iot/", }, iot_taxonomy: { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/", }, patch: { "@id": "https://www.variotdbs.pl/ref/patch/", }, problemtype_data: { "@id": "https://www.variotdbs.pl/ref/problemtype_data/", }, references: { "@id": "https://www.variotdbs.pl/ref/references/", }, sources: { "@id": "https://www.variotdbs.pl/ref/sources/", }, sources_release_date: { "@id": "https://www.variotdbs.pl/ref/sources_release_date/", }, sources_update_date: { "@id": "https://www.variotdbs.pl/ref/sources_update_date/", }, threat_type: { "@id": "https://www.variotdbs.pl/ref/threat_type/", }, title: { "@id": "https://www.variotdbs.pl/ref/title/", }, type: { "@id": "https://www.variotdbs.pl/ref/type/", }, }, "@id": "https://www.variotdbs.pl/vuln/VAR-202301-1474", affected_products: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { model: "maximum security 2022", scope: "eq", trust: 1, vendor: "trendmicro", version: "17.7", }, { model: "ウイルスバスター クラウド", scope: "eq", trust: 0.8, vendor: "トレンドマイクロ", version: "virus buster cloud 17.7", }, { model: "ウイルスバスター クラウド", scope: "eq", trust: 0.8, vendor: "トレンドマイクロ", version: null, }, { model: "ウイルスバスター クラウド", scope: "eq", trust: 0.8, vendor: "トレンドマイクロ", version: "virus buster cloud 17.0", }, { model: "maximum security", scope: null, trust: 0.7, vendor: "trend micro", version: null, }, ], sources: [ { db: "ZDI", id: "ZDI-23-053", }, { db: "JVNDB", id: "JVNDB-2023-001291", }, { db: "NVD", id: "CVE-2022-48191", }, ], }, credits: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/credits#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Simon Zuckerbraun - Trend Micro Zero Day Initiative", sources: [ { db: "ZDI", id: "ZDI-23-053", }, ], trust: 0.7, }, cve: "CVE-2022-48191", cvss: { "@context": { cvssV2: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2", }, cvssV3: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/", }, severity: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#", }, "@id": "https://www.variotdbs.pl/ref/cvss/severity", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { cvssV2: [], cvssV3: [ { attackComplexity: "HIGH", attackVector: "LOCAL", author: "nvd@nist.gov", availabilityImpact: "HIGH", baseScore: 7, baseSeverity: "HIGH", confidentialityImpact: "HIGH", exploitabilityScore: 1, id: "CVE-2022-48191", impactScore: 5.9, integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", trust: 1, userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, { attackComplexity: "Low", attackVector: "Local", author: "NVD", availabilityImpact: "High", baseScore: 7.8, baseSeverity: "High", confidentialityImpact: "High", exploitabilityScore: null, id: "CVE-2022-48191", impactScore: null, integrityImpact: "High", privilegesRequired: "Low", scope: "Unchanged", trust: 0.8, userInteraction: "None", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, { attackComplexity: "LOW", attackVector: "LOCAL", author: "ZDI", availabilityImpact: "HIGH", baseScore: 7.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", exploitabilityScore: 1.8, id: "CVE-2022-48191", impactScore: 5.9, integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", trust: 0.7, userInteraction: "NONE", vectorString: "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, ], severity: [ { author: "nvd@nist.gov", id: "CVE-2022-48191", trust: 1, value: "HIGH", }, { author: "NVD", id: "CVE-2022-48191", trust: 0.8, value: "High", }, { author: "ZDI", id: "CVE-2022-48191", trust: 0.7, value: "HIGH", }, { author: "CNNVD", id: "CNNVD-202301-1558", trust: 0.6, value: "HIGH", }, ], }, ], sources: [ { db: "ZDI", id: "ZDI-23-053", }, { db: "JVNDB", id: "JVNDB-2023-001291", }, { db: "CNNVD", id: "CNNVD-202301-1558", }, { db: "NVD", id: "CVE-2022-48191", }, ], }, description: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "A vulnerability exists in Trend Micro Maximum Security 2022 (17.7) wherein a low-privileged user can write a known malicious executable to a specific location and in the process of removal and restoral an attacker could replace an original folder with a mount point to an arbitrary location, allowing a escalation of privileges on an affected system. Virus Buster from Trend Micro Inc. An update for the cloud has been released. This vulnerability information is provided by the developer for the purpose of dissemination to product users. JPCERT/CC Report to JPCERT/CC Coordinated with the developer.The potential impact will vary for each vulnerability, but you may be impacted by: Please refer to the respective advisory provided by the developer for details. Cloud version 17.7 It was * Arbitrary file deletion due to link interpretation problem when accessing file in data erasure tool - CVE-2022-30687 It was * Privilege escalation due to link interpretation problems when accessing files - CVE-2022-34893 It was * Information Disclosure via Out-of-Bounds Read Vulnerability - CVE-2022-35234 , CVE-2022-37347 , CVE-2022-37348 It was * Time-of-check Time-of-use (( TOCTOU ) Privilege escalation due to race condition vulnerability - CVE-2022-48191 virus buster Cloud version 17.0 It was * Information Disclosure via Out-of-Bounds Read Vulnerability - CVE-2022-35234 , CVE-2022-37347 , CVE-2022-37348. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.The specific flaw exists within the Damage Cleanup Engine. The issue results from the lack of proper locking when performing file operations. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM", sources: [ { db: "NVD", id: "CVE-2022-48191", }, { db: "JVNDB", id: "JVNDB-2023-001291", }, { db: "ZDI", id: "ZDI-23-053", }, { db: "VULMON", id: "CVE-2022-48191", }, ], trust: 2.34, }, external_ids: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { db: "NVD", id: "CVE-2022-48191", trust: 4, }, { db: "ZDI", id: "ZDI-23-053", trust: 2.4, }, { db: "JVN", id: "JVNVU96882769", trust: 0.8, }, { db: "JVNDB", id: "JVNDB-2023-001291", trust: 0.8, }, { db: "ZDI_CAN", id: "ZDI-CAN-18291", trust: 0.7, }, { db: "CNNVD", id: "CNNVD-202301-1558", trust: 0.6, }, { db: "VULMON", id: "CVE-2022-48191", trust: 0.1, }, ], sources: [ { db: "ZDI", id: "ZDI-23-053", }, { db: "VULMON", id: "CVE-2022-48191", }, { db: "JVNDB", id: "JVNDB-2023-001291", }, { db: "CNNVD", id: "CNNVD-202301-1558", }, { db: "NVD", id: "CVE-2022-48191", }, ], }, id: "VAR-202301-1474", iot: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: true, sources: [ { db: "VARIoT devices database", id: null, }, ], trust: 0.09586056, }, last_update_date: "2024-08-14T14:10:35.383000Z", patch: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { title: "Alert / Advisory: Antivirus About cloud vulnerabilities (CVE-2022-35234/CVE-2022-37347/CVE-2022-37348) Trend Micro", trust: 0.8, url: "https://helpcenter.trendmicro.com/ja-jp/article/tmka-11014", }, { title: "Trend Micro has issued an update to correct this vulnerability.", trust: 0.7, url: "https://helpcenter.trendmicro.com/en-us/article/tmka-11252", }, { title: "Trend Micro Maximum Security Security vulnerabilities", trust: 0.6, url: "http://123.124.177.30/web/xxk/bdxqById.tag?id=222636", }, ], sources: [ { db: "ZDI", id: "ZDI-23-053", }, { db: "JVNDB", id: "JVNDB-2023-001291", }, { db: "CNNVD", id: "CNNVD-202301-1558", }, ], }, problemtype_data: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { problemtype: "CWE-367", trust: 1, }, { problemtype: "Link interpretation problem (CWE-59) [NVD evaluation ]", trust: 0.8, }, { problemtype: " Out-of-bounds read (CWE-125) [NVD evaluation ]", trust: 0.8, }, { problemtype: "Time-of-check Time-of-use (TOCTOU) Race condition (CWE-367) [NVD evaluation ]", trust: 0.8, }, ], sources: [ { db: "JVNDB", id: "JVNDB-2023-001291", }, { db: "NVD", id: "CVE-2022-48191", }, ], }, references: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { trust: 2.4, url: "https://helpcenter.trendmicro.com/en-us/article/tmka-11252", }, { trust: 1.7, url: "https://www.zerodayinitiative.com/advisories/zdi-23-053/", }, { trust: 0.8, url: "http://jvn.jp/vu/jvnvu96882769/index.html", }, { trust: 0.8, url: "https://nvd.nist.gov/vuln/detail/cve-2022-30687", }, { trust: 0.8, url: "https://nvd.nist.gov/vuln/detail/cve-2022-34893", }, { trust: 0.8, url: "https://nvd.nist.gov/vuln/detail/cve-2022-35234", }, { trust: 0.8, url: "https://nvd.nist.gov/vuln/detail/cve-2022-37347", }, { trust: 0.8, url: "https://nvd.nist.gov/vuln/detail/cve-2022-37348", }, { trust: 0.8, url: "https://nvd.nist.gov/vuln/detail/cve-2022-48191", }, { trust: 0.6, url: "https://cxsecurity.com/cveshow/cve-2022-48191/", }, { trust: 0.1, url: "https://nvd.nist.gov", }, ], sources: [ { db: "ZDI", id: "ZDI-23-053", }, { db: "VULMON", id: "CVE-2022-48191", }, { db: "JVNDB", id: "JVNDB-2023-001291", }, { db: "CNNVD", id: "CNNVD-202301-1558", }, { db: "NVD", id: "CVE-2022-48191", }, ], }, sources: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", data: { "@container": "@list", }, }, data: [ { db: "ZDI", id: "ZDI-23-053", }, { db: "VULMON", id: "CVE-2022-48191", }, { db: "JVNDB", id: "JVNDB-2023-001291", }, { db: "CNNVD", id: "CNNVD-202301-1558", }, { db: "NVD", id: "CVE-2022-48191", }, ], }, sources_release_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", data: { "@container": "@list", }, }, data: [ { date: "2023-01-18T00:00:00", db: "ZDI", id: "ZDI-23-053", }, { date: "2023-01-20T00:00:00", db: "VULMON", id: "CVE-2022-48191", }, { date: "2023-03-02T00:00:00", db: "JVNDB", id: "JVNDB-2023-001291", }, { date: "2023-01-20T00:00:00", db: "CNNVD", id: "CNNVD-202301-1558", }, { date: "2023-01-20T07:15:12.010000", db: "NVD", id: "CVE-2022-48191", }, ], }, sources_update_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", data: { "@container": "@list", }, }, data: [ { date: "2023-01-18T00:00:00", db: "ZDI", id: "ZDI-23-053", }, { date: "2023-01-20T00:00:00", db: "VULMON", id: "CVE-2022-48191", }, { date: "2024-06-13T07:30:00", db: "JVNDB", id: "JVNDB-2023-001291", }, { date: "2023-01-29T00:00:00", db: "CNNVD", id: "CNNVD-202301-1558", }, { date: "2023-01-26T16:45:51.710000", db: "NVD", id: "CVE-2022-48191", }, ], }, threat_type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "local", sources: [ { db: "CNNVD", id: "CNNVD-202301-1558", }, ], trust: 0.6, }, title: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Trend Micro antivirus Multiple vulnerabilities in the cloud", sources: [ { db: "JVNDB", id: "JVNDB-2023-001291", }, ], trust: 0.8, }, type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "other", sources: [ { db: "CNNVD", id: "CNNVD-202301-1558", }, ], trust: 0.6, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.