CVE-2019-15625 Information

Description

A memory usage vulnerability exists in Trend Micro Password Manager 3.8 that could allow an attacker with access and permissions to the victim’s memory processes to extract sensitive information.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Reference

https://esupport.trendmicro.com/en-us/home/pages/technical-support/1123595.aspx https://esupport.trendmicro.com/support/pwm/solution/ja-jp/1123614.aspx https://jvn.jp/en/jp/JVN49593434/index.html https://jvn.jp/jp/JVN49593434/index.html

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

NONE

Base Score

NONE

Base Severity

5.5