CVE-2020-8468

🗓️ 18 Mar 2020 00:30:43Reported by trendmicroType

Trend Micro security products affected by content validation escape vulnerabilit

Reporter	Title	Published	Views	Family All 20
Tenable Nessus	Trend Micro Apex One and OfficeScan XG Arbitrary Code Execution	17 Mar 202000:00	–	nessus
Tenable Nessus	Trend Micro OfficeScan Multiple Vulnerabilities (000245571)	18 Mar 202000:00	–	nessus
ATTACKERKB	CVE-2020-8467	14 Apr 202000:00	–	attackerkb
ATTACKERKB	CVE-2020-8468	18 Mar 202000:00	–	attackerkb
BDU FSTEC	The vulnerabilities of anti-virus software programs Worry-Free Business Security, Apex One, and OfficeScan stem from insufficient validation of input data. This allows attackers to bypass content validation and manipulate the components of the client agent.	20 Mar 202000:00	–	bdu_fstec
Circl	CVE-2020-8468	18 Mar 202010:15	–	circl
CISA KEV Catalog	Trend Micro Multiple Products Content Validation Escape Vulnerability	3 Nov 202100:00	–	cisa_kev
CNVD	Unspecified Vulnerabilities in Trend Micro Apex One, OfficeScan XG and Worry-Free Business Security	19 Mar 202000:00	–	cnvd
CVE	CVE-2020-8468	18 Mar 202000:30	–	cve
EUVD	EUVD-2020-29334	7 Oct 202500:30	–	euvd

[
  {
    "product": "Trend Micro OfficeScan, Trend Micro Apex One, Trend Micro Worry-Free Business Security (WFBS)",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "OfficeScan XG (12.0), Apex One 2019 (14.0), WFBS 9.0, 9.5 and 10.0"
      }
    ]
  }
]

Source	Link
success	www.success.trendmicro.com/jp/solution/000244253
success	www.success.trendmicro.com/solution/000245572
success	www.success.trendmicro.com/solution/000245571
success	www.success.trendmicro.com/jp/solution/000244836

18 Mar 2020 00:30Current

8.9High risk

Vulners AI Score8.9

EPSS0.05754