A vulnerability in the Trend Micro Apex One ServerMigrationTool component could allow an attacker to execute arbitrary code on affected products. User interaction is required to exploit this vulnerability in that the target must import a corrupted configuration file.
References
Link | Resource |
---|---|
https://www.zerodayinitiative.com/advisories/ZDI-20-1224/ | Third Party Advisory VDB Entry |
https://success.trendmicro.com/solution/000271974 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2020-09-28 17:15
Updated : 2020-10-02 10:50
NVD link : CVE-2020-25773
Mitre link : CVE-2020-25773
JSON object : View
CWE
CWE-415
Double Free
Products Affected
trendmicro
- apex_one
microsoft
- windows