Trend Micro Antivirus One <=3.10.4 Bypass Scan via Crafted Virus
CVE-2024-45335 Published on October 22, 2024

Trend Micro Antivirus One, version 3.10.4 and below contains a vulnerability that could allow an attacker to use a specifically crafted virus to allow itself to bypass and evade a virus scan detection.

NVD

Vulnerability Analysis

Attack Vector:

ADJACENT_NETWORK

Attack Complexity:

LOW

Privileges Required:

HIGH

User Interaction:

NONE

Scope:

CHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

HIGH

Availability Impact:

HIGH

Weakness Type

Processor Optimization Removal or Modification of Security-critical Code

The developer builds a security-critical protection mechanism into the software, but the processor optimizes the execution of the program such that the mechanism is removed or modified.

Products Associated with CVE-2024-45335

Want to know whenever a new CVE is published for TrendMicro Antivirus One? stack.watch will email you.

TrendMicro Antivirus One

Affected Versions

Trend Micro, Inc. Trend Micro Antivirus One:

Version 3.10.4 and below 3.10.6 is affected.

trend_micro_inc antivirus_one:

Version 3.10.4 and below 3.10.6 is affected.

Exploit Probability

EPSS

0.01%

Percentile

0.91%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Trend Micro Antivirus One <=3.10.4 Bypass Scan via Crafted VirusCVE-2024-45335 Published on October 22, 2024

Vulnerability Analysis

Weakness Type

Processor Optimization Removal or Modification of Security-critical Code

Products Associated with CVE-2024-45335

Affected Versions

Exploit Probability

Trend Micro Antivirus One <=3.10.4 Bypass Scan via Crafted Virus
CVE-2024-45335 Published on October 22, 2024