Описание
An invalid memory read vulnerability in a Trend Micro Secuity 2020 (v16.0.0.1302 and below) consumer family of products' driver could allow an attacker to manipulate the specific driver to do a system call operation with an invalid address, resulting in a potential system crash.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 16.0.1302 (включая)Версия до 16.0.1302 (включая)Версия до 16.0.1302 (включая)Версия до 16.0.1302 (включая)
Одновременно
Одно из
cpe:2.3:a:trendmicro:antivirus\+_2020:*:*:*:*:*:*:*:*
cpe:2.3:a:trendmicro:internet_security_2020:*:*:*:*:*:*:*:*
cpe:2.3:a:trendmicro:maximum_security_2020:*:*:*:*:*:*:*:*
cpe:2.3:a:trendmicro:premium_security_2020:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 74%
0.00801
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-125
Связанные уязвимости
github
больше 3 лет назад
An invalid memory read vulnerability in a Trend Micro Secuity 2020 (v16.0.0.1302 and below) consumer family of products' driver could allow an attacker to manipulate the specific driver to do a system call operation with an invalid address, resulting in a potential system crash.
EPSS
Процентиль: 74%
0.00801
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-125