logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2020-15604

Description

An incomplete SSL server certification validation vulnerability in the Trend Micro Security 2019 (v15) consumer family of products could allow an attacker to combine this vulnerability with another attack to trick an affected client into downloading a malicious update instead of the expected one. CWE-494: Update files are not properly verified.


Affected Software


CPE Name Name Version
trendmicro:antivirus\+_2019 trendmicro antivirus\+ 2019 15.0
trendmicro:internet_security_2019 trendmicro internet security 2019 15.0
trendmicro:maximum_security_2019 trendmicro maximum security 2019 15.0
trendmicro:officescan_cloud trendmicro officescan cloud 15
trendmicro:premium_security_2019 trendmicro premium security 2019 15.0

Related