← Back

CVE-2020-8470

nvd nist
Published: Mar 18, 2020Modified: Nov 21, 2024

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0) server contains a vulnerable service DLL file that could allow an attacker to delete any file on the server with SYSTEM level privileges. Authentication is not required to exploit this vulnerability.

Affected (7)

Trendmicro
3 products
Apex One
Officescan
Worry Free Business Security
Configuration A
7 vulnerable
Vulnerable SoftwareAffected Versions
Apex One
Version 2019
Trendmicro
Officescan
Version xg
Officescan
Version xg sp1
Trendmicro
Worry Free Business Security
Version 10.0
Worry Free Business Security
Version 10.0 sp1
Worry Free Business Security
Version 9.0 sp3
Worry Free Business Security
Version 9.5

References (8)

Source: security@trendmicro.com
PatchVendor Advisory
Source: security@trendmicro.com
PatchVendor Advisory
Source: security@trendmicro.com
PatchVendor Advisory
Source: security@trendmicro.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.