CVE-2024-23940

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-23940
Trend Micro uiAirSupport, included in the Trend Micro Security 2023 family of consumer products, version 6.0.2092 and below is vulnerable to a DLL hijacking/proxying vulnerability, which if exploited could allow an attacker to impersonate and modify a library to execute code on the system and ultimately escalate privileges on an affected system.

7.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://helpcenter.trendmicro.com/en-us/article/tmka-12134 Vendor Advisory
https://helpcenter.trendmicro.com/ja-jp/article/tmka-12132 Vendor Advisory
https://medium.com/@s1kr10s/av-when-a-friend-becomes-an-enemy-55f41aba42b1 Exploit Technical Description Third Party Advisory
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:trendmicro:air_support:*:*:*:*:*:*:*:*
cpe:2.3:a:trendmicro:antivirus_\+_security:*:*:*:*:*:*:*:*
cpe:2.3:a:trendmicro:internet_security:*:*:*:*:*:*:*:*
cpe:2.3:a:trendmicro:maximum_security:*:*:*:*:*:*:*:*
cpe:2.3:a:trendmicro:premium_security:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
History

06 Feb 2024, 19:19

Type Values Removed Values Added
References () https://helpcenter.trendmicro.com/en-us/article/tmka-12134 - () https://helpcenter.trendmicro.com/en-us/article/tmka-12134 - Vendor Advisory
References () https://helpcenter.trendmicro.com/ja-jp/article/tmka-12132 - () https://helpcenter.trendmicro.com/ja-jp/article/tmka-12132 - Vendor Advisory
References () https://medium.com/@s1kr10s/av-when-a-friend-becomes-an-enemy-55f41aba42b1 - () https://medium.com/@s1kr10s/av-when-a-friend-becomes-an-enemy-55f41aba42b1 - Exploit, Technical Description, Third Party Advisory
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 7.8
CPE cpe:2.3:a:trendmicro:air_support:*:*:*:*:*:*:*:*
cpe:2.3:a:trendmicro:antivirus_\+_security:*:*:*:*:*:*:*:*
cpe:2.3:a:trendmicro:premium_security:*:*:*:*:*:*:*:*
cpe:2.3:a:trendmicro:internet_security:*:*:*:*:*:*:*:*
cpe:2.3:a:trendmicro:maximum_security:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
CWE CWE-427
First Time Trendmicro maximum Security
Trendmicro
Trendmicro antivirus \+ Security
Trendmicro air Support
Trendmicro premium Security
Microsoft windows
Trendmicro internet Security
Microsoft

30 Jan 2024, 14:18

Type Values Removed Values Added
Summary
  • (es) Trend Micro uiAirSupport, incluido en la familia de productos de consumo Trend Micro Security 2023, versión 6.0.2092 y anteriores, es vulnerable a una vulnerabilidad de secuestro/proxy de DLL que, si se explota, podría permitir a un atacante hacerse pasar por una librería y modificarla para ejecutar código en el sistema y, en última instancia, escalar privilegios en un sistema afectado.

29 Jan 2024, 19:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-01-29 19:15

Updated : 2024-02-06 19:19

NVD link : CVE-2024-23940

Mitre link : CVE-2024-23940

CVE.ORG link : CVE-2024-23940

JSON object : View

Products Affected

trendmicro

  • antivirus_\+_security
  • air_support
  • premium_security
  • internet_security
  • maximum_security

microsoft

  • windows
CWE
CWE-427

Uncontrolled Search Path Element