← back
CVE-2020-15605

CVE-2020-15605

EPSS 2.8%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 2.8%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
27 Aug 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
If LDAP authentication is enabled, an LDAP authentication bypass vulnerability in Trend Micro Vulnerability Protection 2.0 SP2 could allow an unauthenticated attacker with prior knowledge of the targeted organization to bypass manager authentication. Enabling multi-factor authentication prevents this attack. Installations using manager native authentication or SAML authentication are not impacted by this vulnerability.
Affected products
Trend Micro · Trend Micro Vulnerability Protection

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://success.trendmicro.com/solution/000252039https://www.zerodayinitiative.com/advisories/ZDI-20-1083/