CVE-2025-30640
HIGHDescription
A link following vulnerability in Trend Micro Deep Security 20.0 agents could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
Is your site exposed to CVE-2025-30640?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| trendmicro | deep_security_agent |
| trendmicro | deep_security_agent |
| trendmicro | deep_security_agent |
| trendmicro | deep_security_agent |
| trendmicro | deep_security_agent |
| trendmicro | deep_security_agent |
| trendmicro | deep_security_agent |
| trendmicro | deep_security_agent |
| trendmicro | deep_security_agent |
| trendmicro | deep_security_agent |
| trendmicro | deep_security_agent |
| trendmicro | deep_security_agent |
| trendmicro | deep_security_agent |
| microsoft | windows |
References
Advisories & Patches
Other References
Frequently Asked Questions
What is CVE-2025-30640? +
How severe is CVE-2025-30640? +
What products are affected by CVE-2025-30640? +
How do I check if I'm vulnerable to CVE-2025-30640? +
Related Vulnerabilities
Metabase is a business intelligence and embedded analytics tool. Versions prior to v0.52.16.4, v1.52.16.4, v0.53.8, and v1.53.8 are vulnerable to …
Improper Link Resolution Before File Access ('Link Following') vulnerability in QFileSystemEngine in the Qt corelib module on Windows which potentially …
Improper Link Resolution Before File Access ('Link Following') vulnerability in HYPR Passwordless on Windows allows Privilege Escalation.This issue affects HYPR …
Improper Link Resolution Before File Access ('Link Following') vulnerability in yrutschle sslh.This issue affects sslh: before 2.2.2.
Model Context Protocol Servers is a collection of reference implementations for the model context protocol (MCP). Versions of Filesystem prior …
An issue in Cato Networks' CatoClient for Linux, before version 5.5, allows a local attacker to escalate privileges to root …