CVE-2020-8599
| CVE Published | 2020-03-18 |
|---|---|
| Related Vendor(s) | trendmicro |
| Related Product(s) | officescan, apex_one |
| Exploitation Reported (CISA KEV) | 2021-11-03 |
| CVSS 3 Base Score | 9.8 (CRITICAL) |
| CVSS 3 Attack Complexity | LOW |
| CVSS 3 Attack Vector | NETWORK |
Trend Micro Apex One (2019) and OfficeScan XG server contain a vulnerable EXE file that could allow a remote attacker to write arbitrary data to an arbitrary path on affected installations and bypass ROOT login. Authentication is not required to exploit this vulnerability.
Cyber Threat Graph Context
Explore how this CVE relates to the wider threat graph