Main Vulnerability Database SB2019121827

SB2019121827 - Security restrictions bypass in Trend Micro Mobile Security for Android

Published: December 18, 2019 Updated: December 29, 2019

Security Bulletin ID SB2019121827

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Physical access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Security Features (CVE-ID: CVE-2019-19690)

The vulnerability allows a local user to bypass implemented security features.

The vulnerability exists due to the Trend Micro Mobile Security for Android (Consumer) versions 10.3.1 and below on Android 8.0+ are prone to App Password Protection feature bypass. A user with physical access to device can bypass implemented protection mechanisms and gain unauthorized access to the mobile device.

Remediation

Install update from vendor's website.

References

https://esupport.trendmicro.com/en-us/home/pages/technical-support/1124037.aspx