CVE-2019-18190

EUVD-2019-7993
Trend Micro Security (Consumer) 2020 (v16.x) is affected by a vulnerability in where null pointer dereference errors result in the crash of application, which could potentially lead to possible unsigned code execution under certain circumstances.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 72%
Affected Products (NVD)
VendorProductVersion
trendmicroantivirus\+_security_2020
16.0 ≤
𝑥
< 16.0.1227
trendmicrointernet_security_2020
16.0 ≤
𝑥
< 16.0.1227
trendmicromaximum_security_2020
16.0 ≤
𝑥
< 16.0.1227
trendmicropremium_security_2020
16.0 ≤
𝑥
< 16.0.1227
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://esupport.trendmicro.com/en-us/home/pages/technical-support/1124031.aspx
https://esupport.trendmicro.com/en-us/home/pages/technical-support/1124031.aspx