CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-25774

A vulnerability in the Trend Micro Apex One ServerMigrationTool component could allow an attacker to trigger an out-of-bounds red information disclosure which would disclose sensitive information to an unprivileged account. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 52.3%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 4.3

References

https://success.trendmicro.com/solution/000271974
https://www.zerodayinitiative.com/advisories/ZDI-20-1225/
https://success.trendmicro.com/solution/000271974
https://www.zerodayinitiative.com/advisories/ZDI-20-1225/

Products affected by CVE-2020-25774

Trendmicro » Apex One » Version: 2019

cpe:2.3:a:trendmicro:apex_one:2019
Trendmicro » Apex One » Version: saas

cpe:2.3:a:trendmicro:apex_one:saas
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-25774

Products

Pricing

Contact Us