CVE-2023-32524

Name of the Vulnerable Software and Affected Versions Trend Micro Mobile Security (Enterprise) version 9.8 SP5

Description The issue allows a remote user to bypass authentication, potentially chaining with other vulnerabilities. An attacker must first obtain the ability to execute low-privileged code on the target system to exploit this issue.

Recommendations For Trend Micro Mobile Security (Enterprise) version 9.8 SP5, consider restricting access to the widgets that allow authentication bypass until a patch is available. As a temporary workaround, review and strengthen the overall system security to prevent low-privileged code execution on the target system. At the moment, there is no information about a newer version that contains a fix for this vulnerability.