CVE-2022-48191

Name of the Vulnerable Software and Affected Versions Trend Micro Maximum Security version 17.7

Description A vulnerability exists in Trend Micro Maximum Security wherein a low-privileged user can write a known malicious executable to a specific location. During the removal and restoration process, an attacker could replace an original folder with a mount point to an arbitrary location, allowing for escalation of privileges on an affected system. The issue is related to errors in synchronization when using a shared resource in the Damage Cleanup Engine mechanism of the antivirus protection.

Recommendations For version 17.7, consider restricting access to the Damage Cleanup Engine mechanism to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using the shared resource in the Damage Cleanup Engine to prevent potential synchronization errors. At the moment, there is no information about a newer version that contains a fix for this vulnerability.