CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-27697

Trend Micro Security 2020 (Consumer) contains a vulnerability in the installer package that could be exploited by placing a malicious DLL in a non-protected location with high privileges (symlink attack) which can lead to obtaining administrative privileges during the installation of the product.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 15.9%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.9

References

Products affected by CVE-2020-27697

Trendmicro » Antivirus+ Security 2020 » Version: 16.0

cpe:2.3:a:trendmicro:antivirus+_security_2020:16.0
Trendmicro » Internet Security 2020 » Version: 16.0

cpe:2.3:a:trendmicro:internet_security_2020:16.0
Trendmicro » Maximum Security 2020 » Version: 16.0

cpe:2.3:a:trendmicro:maximum_security_2020:16.0
Trendmicro » Premium Security 2020 » Version: 16.0

cpe:2.3:a:trendmicro:premium_security_2020:16.0
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-27697

Products

Pricing

Contact Us