CVE-2020-28578

UNRATED

High EPSS

Description

A vulnerability in Trend Micro InterScan Web Security Virtual Appliance 6.5 SP2 could allow an unauthenticated, remote attacker to send a specially crafted HTTP message and achieve remote code execution with elevated privileges.

Affected products

Trend Micro / Trend Micro InterScan Web Security Virtual Appliance6.5 SP2 – 6.5 SP2

References

MISChttps://success.trendmicro.com/solution/000281954
MISChttps://www.tenable.com/security/research/tra-2020-63