CVE-2020-24557CISA KEVEPSS p83.6%

CVE-2020-24557Trend Micro Multiple Products Improper Access Control Vulnerability

Trend Micro / Apex One, OfficeScan, and Worry-Free Business Security

Description

Trend Micro Apex One, OfficeScan, and Worry-Free Business Security on Microsoft Windows contain an improper access control vulnerability that may allow an attacker to manipulate a particular product folder to disable the security temporarily, abuse a specific Windows function, and attain privilege escalation.

Scoring

EPSS2.64% probability of exploitation · percentile 83.6% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2021-11-03

(incoming)1

TypeTargetConfidenceTier
KEVEntryTrend Micro Multiple Products Improper Access Control Vulnerabilitykev-cve-2020-245570%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Trend Micro Apex One and OfficeScan Authentication Bypass Vulnerability
CVE
Trend Micro Multiple Products Improper Input Validation Vulnerability
CVE
Trend Micro Multiple Products Content Validation Escape Vulnerability
CVE
Trend Micro Apex One and OfficeScan Remote Code Execution Vulnerability
CVE
Trend Micro Apex One and Worry-Free Business Security Remote Code Execution Vulnerability
CVE
Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.