← back
CVE-2020-28575

CVE-2020-28575

EPSS 0.7%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.7%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
01 Dec 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A heap-based buffer overflow privilege escalation vulnerability in Trend Micro ServerProtect for Linux 3.0 may allow an attacker to escalate privileges on affected installations. An attacker must first obtain the ability to execute high-privileged code on the target in order to exploit this vulnerability.
Affected products
Trend Micro · Trend Micro ServerProtect for Linux

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://success.trendmicro.com/solution/000281950https://www.zerodayinitiative.com/advisories/ZDI-20-1378/