exploitDog

CVE-2020-27015

Опубликовано: 30 окт. 2020

Источник: nvd

CVSS3: 4.4

CVSS2: 2.1

EPSS Низкий

Описание

Trend Micro Antivirus for Mac 2020 (Consumer) contains an Error Message Information Disclosure vulnerability that if exploited, could allow kernel pointers and debug messages to leak to userland. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.

Ссылки

https://helpcenter.trendmicro.com/en-us/article/TMKA-09975
Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-20-1286/
Third Party Advisory
VDB Entry
https://helpcenter.trendmicro.com/en-us/article/TMKA-09975
Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-20-1286/
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:trendmicro:antivirus:2020:*:*:*:*:macos:*:*

EPSS

Процентиль: 30%

0.00113

Низкий

4.4 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-209

Связанные уязвимости

GHSA-3728-546x-w527

github

больше 3 лет назад

Trend Micro Antivirus for Mac 2020 (Consumer) contains an Error Message Information Disclosure vulnerability that if exploited, could allow kernel pointers and debug messages to leak to userland. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.

EPSS

Процентиль: 30%

0.00113

Низкий

4.4 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-209