CVE-2023-32522

Name of the Vulnerable Software and Affected Versions Trend Micro Mobile Security (Enterprise) version 9.8 SP5

Description A path traversal issue exists in a specific dll, allowing an authenticated remote attacker to delete arbitrary files. The attacker must first obtain the ability to execute low-privileged code on the target system to exploit this issue.

Recommendations For Trend Micro Mobile Security (Enterprise) version 9.8 SP5, consider restricting access to the vulnerable dll as a temporary workaround until a patch is available. Additionally, ensure that low-privileged code execution on the target system is properly secured to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.