Trend Micro uiAirSupport, included in the Trend Micro Security 2023 family of consumer products, version 6.0.2092 and below is vulnerable to a DLL hijacking/proxying vulnerability, which if exploited could allow an attacker to impersonate and modify a library to execute code on the system and ultimately escalate privileges on an affected system.
History

Thu, 29 May 2025 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: trendmicro

Published: 2024-01-29T18:22:34.819Z

Updated: 2025-05-29T15:08:39.946Z

Reserved: 2024-01-24T01:09:06.034Z

Link: CVE-2024-23940

cve-icon Vulnrichment

Updated: 2024-08-01T23:13:08.534Z

cve-icon NVD

Status : Modified

Published: 2024-01-29T19:15:08.887

Modified: 2025-05-29T15:15:31.403

Link: CVE-2024-23940

cve-icon Redhat

No data.