CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-27013

Trend Micro Antivirus for Mac 2020 (Consumer) contains a vulnerability in the product that occurs when a webserver is started that implements an API with several properties that can be read and written to allowing the attacker to gather and modify sensitive product and user data. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 28.7%

CVSS Severity

CVSS v3 Score 4.4

CVSS v2 Score 3.6

References

https://helpcenter.trendmicro.com/en-us/article/TMKA-09950
https://www.zerodayinitiative.com/advisories/ZDI-20-1243/
https://helpcenter.trendmicro.com/en-us/article/TMKA-09950
https://www.zerodayinitiative.com/advisories/ZDI-20-1243/

Products affected by CVE-2020-27013

Trendmicro » Antivirus » Version: 2020

cpe:2.3:a:trendmicro:antivirus:2020

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-27013

Products

Pricing

Contact Us