CVE-2020-24557
Trend Micro Multiple Products Improper Access Control Vulnerability
CVSS
—
Sin CVSS
EPSS
2.6%
p84
KEV
SÍ
3 nov 2021
Exploit Today
75
0-100
Publicado: — · Última mod.: —
Producto
Trend Micro / Apex One, OfficeScan, and Worry-Free Business Security
Vulnerabilidad
Trend Micro Multiple Products Improper Access Control Vulnerability
Añadido a KEV
3 nov 2021
Remediar antes de
3 may 2022
Uso conocido en ransomware
No
Descripción resumida
Trend Micro Apex One, OfficeScan, and Worry-Free Business Security on Microsoft Windows contain an improper access control vulnerability that may allow an attacker to manipulate a particular product folder to disable the security temporarily, abuse a specific Windows function, and attain privilege escalation.
Acción requerida
Apply updates per vendor instructions.
Notas
https://nvd.nist.gov/vuln/detail/CVE-2020-24557
Sin CVEs relacionados por CWE o producto.