CVE-2023-32521

Summary

A path traversal exists in a specific service dll of Trend Micro Mobile Security (Enterprise) 9.8 SP5 which could allow an unauthenticated remote attacker to delete arbitrary files.

Affected Software

VendorProductVersion RangeStatus
Trend Micro, Inc.Trend Micro Moibile Security for Enterprise9.8 SP5 < 9.8.3294affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: yes
    • Technical Impact: total

References