CVE-2020-24563

Summary

A vulnerability in Trend Micro Apex One may allow a local attacker to manipulate the process of the security agent unload option (if configured), which then could be manipulated to gain a privilege escalation and code execution. An attacker must first obtain the ability to execute low-privileged code on the target in order to exploit this vulnerability.

Affected Software

VendorProductVersion RangeStatus
Trend MicroTrend Micro Apex One2009, SaaSaffected

Weaknesses

  • Authentication Bypass

ADP Enrichment

CVE Program Container

Additional References

References