### [CVE-2019-20357](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20357)
![](https://img.shields.io/static/v1?label=Product&message=Trend%20Micro%20Security%20(Consumer)&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Persistent%20Arbitrary%20Code%20Execution&color=brighgreen)

### Description

A Persistent Arbitrary Code Execution vulnerability exists in the Trend Micro Security 2020 (v160 and 2019 (v15) consumer familiy of products which could potentially allow an attacker the ability to create a malicious program to escalate privileges and attain persistence on a vulnerable system.

### POC

#### Reference
- http://hyp3rlinx.altervista.org/advisories/TREND-MICRO-SECURITY-CONSUMER-PERSISTENT-ARBITRARY-CODE-EXECUTION.txt
- https://seclists.org/bugtraq/2020/Jan/28

#### Github
No PoCs found on GitHub currently.