Vulnerability DatabaseCVE-2020-8469

CVE-2020-8469:
Trend Micro Password Manager vulnerability analysis and mitigation

Overview

Trend Micro Password Manager for Windows version 5.0 was affected by a DLL hijacking vulnerability (CVE-2020-8469) that could potentially allow an attacker to achieve privileged escalation. The vulnerability was disclosed in June 2020 and is classified as an Uncontrolled Search Path Element vulnerability with a CVSSv3 score of 7.3 (Full Disclosure).

Technical details

The vulnerability is classified as an Uncontrolled Search Path Element (CWE-427) which occurs when the software uses a path that is under the control of actors other than the intended system administrators. In this case, the vulnerability exists in the DLL loading mechanism of Trend Micro Password Manager version 5.0 (Full Disclosure).

Impact

The successful exploitation of this vulnerability could allow an attacker to obtain SYSTEM privileges on the affected Windows system, effectively achieving privilege escalation (Full Disclosure).

Mitigation and workarounds

Users should upgrade to a patched version of the Trend Micro Password Manager. The vulnerability was reported to and acknowledged by Trend Micro, who subsequently released a security update to address the issue (Full Disclosure).

Additional resources

Source: This report was generated using AI

Related Trend Micro Password Manager vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-52837	HIGH	7.8	Trend Micro Password Manager	cpe:2.3:a:trendmicro:password_manager::::::windows::*	No	Yes	Jul 10, 2025
CVE-2022-28394	HIGH	7.8	Trend Micro Password Manager	cpe:2.3:a:trendmicro:password_manager::::::windows::*	No	Yes	May 27, 2022
CVE-2022-30523	HIGH	7.8	Trend Micro Password Manager	cpe:2.3:a:trendmicro:password_manager::::::windows::*	No	Yes	May 16, 2022
CVE-2022-26337	HIGH	7.8	Trend Micro Password Manager	cpe:2.3:a:trendmicro:password_manager::::::windows::*	No	Yes	Mar 08, 2022
CVE-2025-48443	MEDIUM	6.6	Trend Micro Password Manager	cpe:2.3:a:trendmicro:password_manager::::::windows::*	No	Yes	Jun 17, 2025

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

A threat intelligence database

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."

David EstlickCISO

"Wiz provides a single pane of glass to see what is going on in our cloud environments."

Adam FletcherChief Security Officer

"We know that if Wiz identifies something as critical, it actually is."

Greg PoniatowskiHead of Threat and Vulnerability Management

Get a demo

CVE-2020-8469: Trend Micro Password Manager vulnerability analysis and mitigation