Trend Micro Antivirus for Mac 2020 (Consumer) is vulnerable to a symbolic link privilege escalation attack where an attacker could exploit a critical file on the system to escalate their privileges. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
References
Link | Resource |
---|---|
https://helpcenter.trendmicro.com/en-us/article/TMKA-09924 | Vendor Advisory |
https://www.zerodayinitiative.com/advisories/ZDI-20-1236/ | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: trendmicro
Published: 2020-10-02T22:00:17
Updated: 2020-10-02T22:00:17
Reserved: 2020-09-18T00:00:00
Link: CVE-2020-25776
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-10-02T22:15:13.543
Modified: 2021-07-21T11:39:23.747
Link: CVE-2020-25776
JSON object: View
Redhat Information
No data.
CWE