Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiCees Elzinga from Danish Cyber DefenceZDI-20-1285
HistoryOct 26, 2020 - 12:00 a.m.

Trend Micro Antivirus for Mac Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability

2020-10-2600:00:00
Cees Elzinga from Danish Cyber Defence
www.zerodayinitiative.com
24
trend micro
antivirus
mac
privilege escalation
vulnerability
keredirect kext
locking issue
kernel code execution

EPSS

0

Percentile

15.9%

JSON

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Antivirus for Mac. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the KERedirect kext. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel.

Related

prion 1
cve 1
nvd 1
cvelist 1
prion
prion
Race condition
2020-10-30 00:15:00
cve
cve
CVE-2020-27014
2020-10-30 00:15:12
nvd
nvd
CVE-2020-27014
2020-10-30 00:15:12
cvelist
cvelist
CVE-2020-27014
2020-10-29 23:45:23

EPSS

0

Percentile

15.9%

JSON
Related for ZDI-20-1285
prion1cve1nvd1cvelist1