CVE-2025-52837

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Trend Micro Password Manager versions 5.8.0.1327 and below

Description: Trend Micro Password Manager (Consumer) is susceptible to a Link Following Privilege Escalation issue. This could allow an attacker to exploit symbolic links and similar techniques to delete files and folders, potentially leading to privilege escalation.

Recommendations: Update Trend Micro Password Manager to a version newer than 5.8.0.1327.

Fix

LPE

Link Following

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-64CWE-59

Related Identifiers

BDU:2025-16390

CVE-2025-52837

ZDI-25-586

Affected Products

Trend Micro Password Manager

CVE-2025-52837

Weakness Enumeration

Related Identifiers

Affected Products

References · 9