3.3

CVE-2021-25227

Trend Micro Antivirus for Mac 2021 (Consumer) is vulnerable to a memory exhaustion vulnerability that could lead to disabling all the scanning functionality within the application. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability - i.e. the attacker must already have access to the target system (either legitimately or via another exploit).
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
TrendmicroAntivirus Version9.0 SwPlatformmacos
TrendmicroAntivirus Version10.0 SwPlatformmacos
TrendmicroAntivirus Version10.5 SwPlatformmacos
TrendmicroAntivirus Version11.0 SwPlatformmacos
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.48% 0.378
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 3.3 1.8 1.4
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
nvd@nist.gov 1.9 3.4 2.9
AV:L/AC:M/Au:N/C:N/I:N/A:P
CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource.

https://helpcenter.trendmicro.com/en-us/article/TMKA-10191
Patch
Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-21-102/
Third Party Advisory
VDB Entry