What is the severity of CVE-2020-27695?

CVE-2020-27695 has a high severity rating due to its potential to grant administrative privileges through exploitation.

How do I fix CVE-2020-27695?

To remediate CVE-2020-27695, ensure that you are using the latest version of Trend Micro Security 2020 and follow any security patches provided by the vendor.

Which software is affected by CVE-2020-27695?

CVE-2020-27695 affects Trend Micro Antivirus+ Security 2020, Internet Security 2020, Maximum Security 2020, and Premium Security 2020, all up to version 16.0.

What type of vulnerability is CVE-2020-27695?

CVE-2020-27695 is a DLL injection vulnerability that can be exploited during the installation of affected Trend Micro products.

Can CVE-2020-27695 lead to data breaches?

Yes, CVE-2020-27695 could potentially lead to data breaches by allowing unauthorized users to gain administrative access.

Vulnerability/
CVE-2020-27695

high

7.8

CWE

426

18/11/2020

4/8/2024

CVE-2020-27695

First published: Wed Nov 18 2020(Updated: )

Trend Micro Security 2020 (Consumer) contains a vulnerability in the installer package that could be exploited by placing a malicious DLL in a local directory which can lead to obtaining administrative privileges during the installation of the product.

Credit: security@trendmicro.com

Affected Software	Affected Version	How to fix
Trend Micro Antivirus+ Security 2020	<=16.0
Trend Micro Internet Security	<=16.0
Trend Micro Maximum Security	<=16.0
Trend Micro Premium Security 2020	<=16.0
Microsoft Windows

Never miss a vulnerability like this again

Reference Links

https://helpcenter.trendmicro.com/en-us/article/TMKA-10036

Frequently Asked Questions

What is the severity of CVE-2020-27695?
CVE-2020-27695 has a high severity rating due to its potential to grant administrative privileges through exploitation.
How do I fix CVE-2020-27695?
To remediate CVE-2020-27695, ensure that you are using the latest version of Trend Micro Security 2020 and follow any security patches provided by the vendor.
Which software is affected by CVE-2020-27695?
CVE-2020-27695 affects Trend Micro Antivirus+ Security 2020, Internet Security 2020, Maximum Security 2020, and Premium Security 2020, all up to version 16.0.
What type of vulnerability is CVE-2020-27695?
CVE-2020-27695 is a DLL injection vulnerability that can be exploited during the installation of affected Trend Micro products.
Can CVE-2020-27695 lead to data breaches?
Yes, CVE-2020-27695 could potentially lead to data breaches by allowing unauthorized users to gain administrative access.

agent/type
collector/mitre-cve
source/MITRE
agent/weakness
agent/references
agent/author
agent/severity
agent/last-modified-date
agent/softwarecombine
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/trendmicro
canonical/trend micro antivirus+ security 2020
version/trend micro antivirus+ security 2020/16.0
canonical/trend micro internet security
version/trend micro internet security/16.0
canonical/trend micro maximum security
version/trend micro maximum security/16.0
canonical/trend micro premium security 2020
version/trend micro premium security 2020/16.0
vendor/microsoft
canonical/microsoft windows

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.