CVE-2020-8467

Summary

A migration tool component of Trend Micro Apex One (2019) and OfficeScan XG contains a vulnerability which could allow remote attackers to execute arbitrary code on affected installations (RCE). An attempted attack requires user authentication.

Affected Software

VendorProductVersion RangeStatus
Trend MicroTrend Micro OfficeScan, Trend Micro Apex OneOfficeScan XG (12.0), Apex One 2019 (14.0)affected

Weaknesses

  • RCE

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: no
    • Technical Impact: total

Additional References

References