Trend Micro

Trend Micro, a major cybersecurity software vendor, has a high-severity vulnerability (CVSS 7.8) that requires local access and low-level user privileges to exploit, but once compromised grants an attacker complete control over confidentiality, integrity, and availability of the affected system. The vulnerability does not require user interaction and affects only the local system where the vulnerable software is installed. Security teams should prioritize patching Trend Micro products and monitor for suspicious local privilege escalation attempts on systems running affected versions before the May 14, 2025 deadline.