Security Advisory

CVE-2020-15604

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-24 01:50:21

Last updated 2024-08-04 13:22:30

Assigner trendmicro

State PUBLISHED

Description

An incomplete SSL server certification validation vulnerability in the Trend Micro Security 2019 (v15) consumer family of products could allow an attacker to combine this vulnerability with another attack to trick an affected client into downloading a malicious update instead of the expected one. CWE-494: Update files are not properly verified.

← Browse all CVEs View on cve.org ↗