CVE-2020-24557: Trend Micro Multiple Products Improper Access Control
Trend Micro Multiple Products Improper Access Control Vulnerability. Trend Micro Apex One, OfficeScan, and Worry-Free Business Security on Microsoft Windows contain an improper access control vulnerability that may allow an attacker to manipulate a particular product folder to disable the security temporarily, abuse a specific Windows function, and attain privilege escalation.
- CISA KEV-listed (remediation due 2022-05-03)
- EPSS 1.9% (83.5% percentile)