CVE-2020-8607

🗓️ 05 Aug 2020 14:05:23Reported by trendmicroType

Vulnerability in Trend Micro products, allowing admin abuse of driver for potential code executio

Reporter	Title	Published	Views	Family All 5
Cvelist	CVE-2020-8607	5 Aug 202014:05	–	cvelist
EUVD	EUVD-2020-29455	7 Oct 202500:30	–	euvd
NVD	CVE-2020-8607	5 Aug 202014:15	–	nvd
Prion	Input validation	5 Aug 202014:15	–	prion
RedhatCVE	CVE-2020-8607	22 May 202517:12	–	redhatcve

NVD

Node

trendmicro antivirus_toolkitRange<1.62.1240

trendmicro apex_oneMatch2019

trendmicro apex_oneMatchsaas

trendmicro deep_securityMatch9.6

trendmicro deep_securityMatch10.0

trendmicro deep_securityMatch11.0

trendmicro deep_securityMatch12.0

trendmicro officescanMatchxgsp1

trendmicro officescan_business_securityMatch9.0

trendmicro officescan_business_securityMatch9.5

trendmicro officescan_business_securityMatch10.0sp1

trendmicro officescan_business_security_serviceMatch-

trendmicro officescan_cloudMatch15

trendmicro officescan_cloudMatch16.0

trendmicro online_scanMatch8.0

trendmicro portable_securityMatch2.0

trendmicro portable_securityMatch3.0

trendmicro rootkit_busterMatch2.2

trendmicro safe_lockMatch-txone

trendmicro safe_lockMatch2.0sp1-

trendmicro serverprotectMatch5.8emc

trendmicro serverprotectMatch5.8netware

trendmicro serverprotectMatch5.8windows

trendmicro serverprotectMatch6.0storage

AND

microsoft windowsMatch-

[
  {
    "product": "Trend Micro Apex One",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "2019 (On premise), SaaS"
      }
    ]
  },
  {
    "product": "Trend Micro OfficeScan",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "XG SP1"
      }
    ]
  },
  {
    "product": "Trend Micro Deep Security",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "12.x, 11.x. 10.x"
      }
    ]
  },
  {
    "product": "Trend Micro Worry-Free Business Security",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "10.0 SP1, Services (SaaS)"
      }
    ]
  },
  {
    "product": "Trend Micro Security (Consumer Family)",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "2020 (v16), 2019 (v15)"
      }
    ]
  },
  {
    "product": "Trend Micro Safe Lock",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "2.0 SP1, TXOne Ed"
      }
    ]
  },
  {
    "product": "Trend Micro ServerProtect",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "SPFS 6.0, SPNAF 5.8, SPEMC 5.8, SPNT 5.8"
      }
    ]
  },
  {
    "product": "Trend Micro Portable Security",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "3.x, 2.x"
      }
    ]
  },
  {
    "product": "Trend Micro HouseCall",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "8.0"
      }
    ]
  },
  {
    "product": "Trend Micro Anti-Threat Toolkit (ATTK)",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "1.62.1240 and below"
      }
    ]
  },
  {
    "product": "Trend Micro Rootkit Buster",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "2.2"
      }
    ]
  }
]

Source	Link
jvn	www.jvn.jp/en/vu/JVNVU99160193/index.html
jvn	www.jvn.jp/vu/JVNVU99160193/
success	www.success.trendmicro.com/jp/solution/000260748
success	www.success.trendmicro.com/solution/000260713

21 Nov 2024 05:39Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.16.7

CVSS 27.2

EPSS0.00082

CWE-20