CVE-2020-28577 vulnerability in TrendMicro Products
Published on December 1, 2020

An improper access control information disclosure vulnerability in Trend Micro Apex One and OfficeScan XG SP1 could allow an unauthenticated user to connect to the product server and reveal server hostname and db names.

NVD

Products Associated with CVE-2020-28577

stack.watch emails you whenever new vulnerabilities are published in TrendMicro Apex One or TrendMicro Officescan. Just hit a watch button to start following.

TrendMicro Apex One

TrendMicro Officescan

Affected Versions

Trend Micro Apex One:

Version 2019 is affected.

Trend Micro OfficeScan:

Version XG SP1 is affected.

Exploit Probability

EPSS

0.38%

Percentile

59.19%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-28577 vulnerability in TrendMicro ProductsPublished on December 1, 2020

Products Associated with CVE-2020-28577

Affected Versions

Exploit Probability

CVE-2020-28577 vulnerability in TrendMicro Products
Published on December 1, 2020