CVE-2020-8602

2020-08-2720:35:19

trendmicro

www.cve.org

7.3 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.1%

JSON

A vulnerability in the management consoles of Trend Micro Deep Security 10.0-12.0 and Trend Micro Vulnerability Protection 2.0 SP2 may allow an authenticated attacker with full control privileges to bypass file integrity checks, leading to remote code execution.

CNA Affected

[
  {
    "product": "Trend Micro Deep Security",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "10.0, 11.0, 12.0"
      }
    ]
  },
  {
    "product": "Trend Micro Vulnerability Management",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "2.0 SP2"
      }
    ]
  }
]

References

success.trendmicro.com/solution/000252039