CVE-2024-32849

Name of the Vulnerable Software and Affected Versions: Trend Micro Security versions 17.x Trend Micro Maximum Security (affected versions not specified)

Description: The issue is related to a Privilege Escalation vulnerability that could allow a local attacker to unintentionally delete privileged Trend Micro files, including its own, or execute arbitrary code. This is due to an incorrect link resolution before accessing a file in the coreServiceShell process of Trend Micro Maximum Security for Windows operating systems.

Recommendations: For Trend Micro Security version 17.x, update to a version that includes a fix for the Privilege Escalation vulnerability. For Trend Micro Maximum Security, at the moment, there is no information about a newer version that contains a fix for this vulnerability.