Auto-merge PR#2487

2025-06-19 17:32:41 +00:00 · 2019-08-21 15:45:12 -04:00 · 2019-08-21 15:45:12 -04:00 · c6dbd45196
commit c6dbd45196
parent cd22e22411 a65bb052b0
2 changed files with 123 additions and 0 deletions
--- a/2019/14xxx/CVE-2019-14685.json
+++ b/2019/14xxx/CVE-2019-14685.json
@ -0,0 +1,63 @@
+{
+	"CVE_data_meta" : {
+		"ASSIGNER" : "security@trendmicro.com",
+		"ID" : "CVE-2019-14685",
+		"STATE" : "PUBLIC"
+	},
+	"affects" : {
+		"vendor" : {
+			"vendor_data" : [
+				{
+					"product" : {
+						"product_data" : [
+							{
+								"product_name" : "Trend Micro Security (Consumer)",
+								"version" : {
+									"version_data" : [
+										{
+											"version_value" : "2019 (15.0)"
+										}
+									]
+								}
+							}
+						]
+					},
+					"vendor_name" : "Trend Micro"
+				}
+			]
+		}
+	},
+	"data_format" : "MITRE",
+	"data_type" : "CVE",
+	"data_version" : "4.0",
+	"description" : {
+		"description_data" : [
+			{
+				"lang" : "eng",
+				"value" : "A local privilege escalation vulnerability exists in Trend Micro Security 2019 (v15.0) in which, if exploited, would allow an attacker to manipulate a specific product feature to load a malicious service.  "
+			}
+		]
+	},
+	"problemtype" : {
+		"problemtype_data" : [
+			{
+				"description" : [
+					{
+						"lang" : "eng",
+						"value" : "Local Privilege Escalation"
+					}
+				]
+			}
+		]
+	},
+	"references" : {
+		"reference_data" : [
+			{
+				"url" : "https://esupport.trendmicro.com/en-us/home/pages/technical-support/1123420.aspx"
+			},
+			{
+				"url" : "https://medium.com/sidechannel-br/vulnerabilidade-no-trend-micro-maximum-security-2019-permite-a-escala%C3%A7%C3%A3o-de-privil%C3%A9gios-no-windows-471403d53b68"
+			}
+		]
+	}
+}
--- a/2019/14xxx/CVE-2019-14686.json
+++ b/2019/14xxx/CVE-2019-14686.json
@ -0,0 +1,60 @@
+{
+	"CVE_data_meta" : {
+		"ASSIGNER" : "security@trendmicro.com",
+		"ID" : "CVE-2019-14686",
+		"STATE" : "PUBLIC"
+	},
+	"affects" : {
+		"vendor" : {
+			"vendor_data" : [
+				{
+					"product" : {
+						"product_data" : [
+							{
+								"product_name" : "Trend Micro Ransom Buster, Trend Micro Security (Consumer)",
+								"version" : {
+									"version_data" : [
+										{
+											"version_value" : "Ransom Buster 1.0, Trend Micro Security 2019 (v15.0)"
+										}
+									]
+								}
+							}
+						]
+					},
+					"vendor_name" : "Trend Micro"
+				}
+			]
+		}
+	},
+	"data_format" : "MITRE",
+	"data_type" : "CVE",
+	"data_version" : "4.0",
+	"description" : {
+		"description_data" : [
+			{
+				"lang" : "eng",
+				"value" : "A DLL hijacking vulnerability exists in the Trend Micro Security's 2019 consumer family of products (v15) Folder Shield component and the standalone Trend Micro Ransom Buster (1.0) tool in which, if exploited, would allow an attacker to load a malicious DLL, leading to elevated privileges.  "
+			}
+		]
+	},
+	"problemtype" : {
+		"problemtype_data" : [
+			{
+				"description" : [
+					{
+						"lang" : "eng",
+						"value" : "DLL Hijacking"
+					}
+				]
+			}
+		]
+	},
+	"references" : {
+		"reference_data" : [
+			{
+				"url" : "https://esupport.trendmicro.com/en-us/home/pages/technical-support/1123421.aspx"
+			}
+		]
+	}
+}