CVE-2025-52837

Summary

Trend Micro Password Manager (Consumer) version 5.8.0.1327 and below is vulnerable to a Link Following Privilege Escalation Vulnerability that could allow an attacker the opportunity to abuse symbolic links and other methods to delete any file/folder and achieve privilege escalation.

Affected Software

VendorProductVersion RangeStatus
Trend Micro, Inc.Trend Micro Password Manager5.8 < 5.8.0.1327affected

Weaknesses

  • CWE-64: CWE-64: Windows Shortcut Following (.LNK)

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References