CVE-2020-8607 — MEDIUM (6.7)

Q: How severe is CVE-2020-8607?

CVE-2020-8607 has been rated MEDIUM with a CVSS base score of 6.7/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2020-8607?

Check the references section above for vendor advisories and patch information. Affected products include: Trendmicro Antivirus Toolkit, Trendmicro Apex One, Trendmicro Deep Security, Trendmicro Officescan, Trendmicro Officescan Business Security.

Vulnerability Description

An input validation vulnerability found in multiple Trend Micro products utilizing a particular version of a specific rootkit protection driver could allow an attacker in user-mode with administrator permissions to abuse the driver to modify a kernel address that may cause a system crash or potentially lead to code execution in kernel mode. An attacker must already have obtained administrator access on the target machine (either legitimately or via a separate unrelated attack) to exploit this vulnerability.

CVSS Score

6.7

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Trendmicro	Antivirus Toolkit	< 1.62.1240
Trendmicro	Apex One	2019
Trendmicro	Deep Security	9.6
Trendmicro	Officescan	xg
Trendmicro	Officescan Business Security	9.0
Trendmicro	Officescan Business Security Service	-
Trendmicro	Officescan Cloud	15
Trendmicro	Online Scan	8.0
Trendmicro	Portable Security	2.0
Trendmicro	Rootkit Buster	2.2
Trendmicro	Safe Lock	-
Trendmicro	Serverprotect	5.8
Microsoft	Windows	-

Related Weaknesses (CWE)

CWE-20

References

https://jvn.jp/en/vu/JVNVU99160193/index.htmlThird Party Advisory
https://jvn.jp/vu/JVNVU99160193/Third Party Advisory
https://success.trendmicro.com/jp/solution/000260748Vendor Advisory
https://success.trendmicro.com/solution/000260713PatchVendor Advisory
https://jvn.jp/en/vu/JVNVU99160193/index.htmlThird Party Advisory
https://jvn.jp/vu/JVNVU99160193/Third Party Advisory
https://success.trendmicro.com/jp/solution/000260748Vendor Advisory
https://success.trendmicro.com/solution/000260713PatchVendor Advisory

FAQ

What is CVE-2020-8607?

CVE-2020-8607 is a vulnerability with a CVSS score of 6.7 (MEDIUM). An input validation vulnerability found in multiple Trend Micro products utilizing a particular version of a specific rootkit protection driver could allow an attacker in user-mode with administrator ...

How severe is CVE-2020-8607?

CVE-2020-8607 has been rated MEDIUM with a CVSS base score of 6.7/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-8607?

Check the references section above for vendor advisories and patch information. Affected products include: Trendmicro Antivirus Toolkit, Trendmicro Apex One, Trendmicro Deep Security, Trendmicro Officescan, Trendmicro Officescan Business Security.