A vulnerability in Trend Micro InterScan Web Security Virtual Appliance 6.5 SP2 could allow an unauthenticated, remote attacker to send a specially crafted HTTP message and achieve remote code execution with elevated privileges.
References
Link | Resource |
---|---|
https://success.trendmicro.com/solution/000281954 | Vendor Advisory |
https://www.tenable.com/security/research/tra-2020-63 | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2020-11-18 11:15
Updated : 2020-11-29 17:17
NVD link : CVE-2020-28578
Mitre link : CVE-2020-28578
JSON object : View
CWE
CWE-787
Out-of-bounds Write
Products Affected
trendmicro
- interscan_web_security_virtual_appliance