Vulnerability Details CVE-2020-8605
A vulnerability in Trend Micro InterScan Web Security Virtual Appliance 6.5 may allow remote attackers to execute arbitrary code on affected installations. Authentication is required to exploit this vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.896
EPSS Ranking 99.5%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
References
- http://packetstormsecurity.com/files/158171/Trend-Micro-Web-Security-Virtual-Appliance-Remote-Code-Execution.html
- http://packetstormsecurity.com/files/158423/Trend-Micro-Web-Security-Remote-Code-Execution.html
- https://success.trendmicro.com/solution/000253095
- https://www.zerodayinitiative.com/advisories/ZDI-20-676/
- http://packetstormsecurity.com/files/158171/Trend-Micro-Web-Security-Virtual-Appliance-Remote-Code-Execution.html
- http://packetstormsecurity.com/files/158423/Trend-Micro-Web-Security-Remote-Code-Execution.html
- https://success.trendmicro.com/solution/000253095
- https://www.zerodayinitiative.com/advisories/ZDI-20-676/
Products affected by CVE-2020-8605
-
cpe:2.3:a:trendmicro:interscan_web_security_virtual_appliance:6.5