EUVD-2020-20199

Malware in sbrugna...

EUVD-2020-20200

Malware in sbrugna...

CVE-2020-27696

Trend Micro Security 2020 Consumer contains a vulnerability in the installer package that could be exploited by placing a specific Windows system directory which can lead to obtaining administrative privileges during the installation of the product...

BELL-CVE-2020-27814 CVE-2020-27814 does not affect BellSoft software

Bulletin has no description...

CVE-2020-27696

Trend Micro Security 2020 Consumer contains a vulnerability in the installer package that could be exploited by placing a specific Windows system directory which can lead to obtaining administrative privileges during the installation of the product...

CVE-2020-27696

Trend Micro Security 2020 Consumer contains a vulnerability in the installer package that could be exploited by placing a specific Windows system directory which can lead to obtaining administrative privileges during the installation of the product...

Input validation

Trend Micro Security 2020 Consumer contains a vulnerability in the installer package that could be exploited by placing a malicious DLL in a non-protected location with high privileges symlink attack which can lead to obtaining administrative privileges during the installation of the product...

CVE-2020-27697

Trend Micro Security 2020 Consumer contains a vulnerability in the installer package that could be exploited by placing a malicious DLL in a non-protected location with high privileges symlink attack which can lead to obtaining administrative privileges during the installation of the product...

CVE-2020-27697

CVE-2020-27697 : Trend Micro Security 2020 (Consumer) installer package vulnerable to a local privilege escalation via a symlink attack (placing a malicious DLL in an unprotected, high-privilege location) during installation. Multiple sources report this as a local elevation-of-privilege issue af...

CVE-2020-27695

Trend Micro Security 2020 Consumer contains a vulnerability in the installer package that could be exploited by placing a malicious DLL in a local directory which can lead to obtaining administrative privileges during the installation of the product...

Trend Micro Security 2020 后置链接漏洞

Trend Micro Security 2020 is a suite of computer security protection software from Trend Micro. Trend Micro Security 2020 Consumer has a security vulnerability that can be exploited by an attacker by placing a malicious DLL in an unprotected location and high privileges symbolic link attack, whic...

CVE-2020-25775

The Trend Micro Security 2020 v16 consumer family of products is vulnerable to a security race condition arbitrary file deletion vulnerability that could allow an unprivileged user to manipulate the product's secure erase feature to delete files with a higher set of privileges...

CVE-2020-25775

CVE-2020-25775 affects Trend Micro Security 2020 (Consumer) and related products. Multiple connected sources describe a race condition in the Secure Erase feature that could let an unprivileged/local attacker delete files with higher privileges by abusing the feature’s file handling (vulnerabilit...

CVE-2020-25775

The Trend Micro Security 2020 v16 consumer family of products is vulnerable to a security race condition arbitrary file deletion vulnerability that could allow an unprivileged user to manipulate the product's secure erase feature to delete files with a higher set of privileges...

CVE-2020-15602

An untrusted search path remote code execution RCE vulnerability in the Trend Micro Secuity 2020 v16.0.0.1146 and below consumer family of products could allow an attacker to run arbitrary code on a vulnerable system. As the Trend Micro installer tries to load DLL files from its current directory...

CVE-2020-8102

Improper Input Validation vulnerability in the Safepay browser component of Bitdefender Total Security 2020 allows an external, specially crafted web page to run remote commands inside the Safepay Utility process. This issue affects Bitdefender Total Security 2020 versions prior to 24.0.20.116...

Input validation

Improper Input Validation vulnerability in the Safepay browser component of Bitdefender Total Security 2020 allows an external, specially crafted web page to run remote commands inside the Safepay Utility process. This issue affects Bitdefender Total Security 2020 versions prior to 24.0.20.116...

CVE-2020-8102 Insufficient URL sanitization and validation in Safepay Browser (VA-8631)

Improper Input Validation vulnerability in the Safepay browser component of Bitdefender Total Security 2020 allows an external, specially crafted web page to run remote commands inside the Safepay Utility process. This issue affects Bitdefender Total Security 2020 versions prior to 24.0.20.116...

Design/Logic Flaw

A vulnerability in the improper handling of junctions before deletion in Bitdefender Total Security 2020 can allow an attacker to to trigger a denial of service on the affected device...

CVE-2020-8095

CVE-2020-8095 affects Bitdefender Total Security 2020, where the vulnerability lies in the incorrect handling of junctions. A local attacker with low privileges can exploit the flaw by creating a junction, abusing the service to delete arbitrary files, and causing a denial-of-service condition on...