CVE-2020-24560

CVE-2020-24560

An incomplete SSL server certification validation vulnerability in the Trend Micro Security 2019 (v15) consumer family of products could allow an attacker to combine this vulnerability with another attack to trick an affected client into downloading a malicious update instead of the expected one. CWE-295: Improper server certificate verification in the communication with the update server.

Source: CVE-2020-24560

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다