Vulnerability Description
A vulnerability in Trend Micro InterScan Web Security Virtual Appliance 6.5 may allow remote attackers to execute arbitrary code on affected installations. Authentication is required to exploit this vulnerability.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Trendmicro | Interscan Web Security Virtual Appliance | 6.5 |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/158171/Trend-Micro-Web-Security-Virtual-AppExploitThird Party AdvisoryVDB Entry
- http://packetstormsecurity.com/files/158423/Trend-Micro-Web-Security-Remote-CodeExploitThird Party AdvisoryVDB Entry
- https://success.trendmicro.com/solution/000253095PatchVendor Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-20-676/Third Party AdvisoryVDB Entry
- http://packetstormsecurity.com/files/158171/Trend-Micro-Web-Security-Virtual-AppExploitThird Party AdvisoryVDB Entry
- http://packetstormsecurity.com/files/158423/Trend-Micro-Web-Security-Remote-CodeExploitThird Party AdvisoryVDB Entry
- https://success.trendmicro.com/solution/000253095PatchVendor Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-20-676/Third Party AdvisoryVDB Entry
FAQ
What is CVE-2020-8605?
CVE-2020-8605 is a vulnerability with a CVSS score of 8.8 (HIGH). A vulnerability in Trend Micro InterScan Web Security Virtual Appliance 6.5 may allow remote attackers to execute arbitrary code on affected installations. Authentication is required to exploit this v...
How severe is CVE-2020-8605?
CVE-2020-8605 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-8605?
Check the references section above for vendor advisories and patch information. Affected products include: Trendmicro Interscan Web Security Virtual Appliance.