Content Validation Escape Vulnerability in Trend Micro Apex One, OfficeScan XG, and Worry-Free Business Security Agents

Content Validation Escape Vulnerability in Trend Micro Apex One, OfficeScan XG, and Worry-Free Business Security Agents

CVE-2020-8468 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0) agents are affected by a content validation escape vulnerability which could allow an attacker to manipulate certain agent client components. An attempted attack requires user authentication.

Learn more about our Cis Benchmark Audit For Microsoft Office.