CyberSec.Space Logo
CVEブラウザに戻る

CVE-2020-8598

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1800%
EPSS Percentile21.37th
Published2020年3月18日
Last Modified2024年11月21日

Vulnerability Description

Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0) server contains a vulnerable service DLL file that could allow a remote attacker to execute arbitrary code on affected installations with SYSTEM level privileges. Authentication is not required to exploit this vulnerability.

Affected Platforms (CPE)

📦
Trendmicro

Apex One

= 2019
📦
Trendmicro

Officescan

= xg
📦
Trendmicro

Officescan

= xg
📦
Trendmicro

Worry Free Business Security

= 9.0
📦
Trendmicro

Worry Free Business Security

= 9.5
📦
Trendmicro

Worry Free Business Security

= 10.0
📦
Trendmicro

Worry Free Business Security

= 10.0

References & Advisories

🔗 https://success.trendmicro.com/jp/solution/000244253
🔗 https://success.trendmicro.com/jp/solution/000244836
🔗 https://success.trendmicro.com/solution/000245571
🔗 https://success.trendmicro.com/solution/000245572
🔗 https://success.trendmicro.com/jp/solution/000244253
🔗 https://success.trendmicro.com/jp/solution/000244836
🔗 https://success.trendmicro.com/solution/000245571
🔗 https://success.trendmicro.com/solution/000245572

関連する脆弱性情報

CVE-2020-85999.8

Trend Micro Apex One (2019) and OfficeScan XG server contain a vulnerable EXE file that could allow a remote attacker to write arb...

CVE-2019-181899.8

A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (11.0, XG) and Worry-Free Business Security (9.5, 10.0) ma...

CVE-2026-349269.2

Trend Micro Apex One is vulnerable to Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability. Apply mitigations per v...

CVE-2020-84678.8

A migration tool component of Trend Micro Apex One (2019) and OfficeScan XG contains a vulnerability which could allow remote atta...