CVE-2020-15601
Trend Micro Deep Security Manager Authentication Bypass Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
If LDAP authentication is enabled, an LDAP authentication bypass vulnerability in Trend Micro Deep Security 10.x-12.x could allow an unauthenticated attacker with prior knowledge of the targeted organization to bypass manager authentication. Enabling multi-factor authentication prevents this attack. Installations using manager native authentication or SAML authentication are not impacted by this vulnerability.
Si la autenticación LDAP está habilitada, una vulnerabilidad de omisión de autenticación LDAP en Trend Micro Deep Security versiones 10.x-12.x, podría permitir a un atacante no autenticado con conocimiento previo de la organización objetivo omitir la autenticación del administrador. Habilitar la autenticación multifactorial impide este ataque. Las instalaciones que usan la autenticación nativa del administrador o la autenticación SAML no están afectadas por esta vulnerabilidad
This vulnerability allows remote attackers to bypass authentication on affected installations of Trend Micro Deep Security Manager. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the Deep Security Manager console. The issue results from the lack of proper validation prior to authentication. An attacker can leverage this vulnerability to bypass authentication on the system.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2020-07-07 CVE Reserved
- 2020-08-21 CVE Published
- 2024-03-06 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-287: Improper Authentication
CAPEC
References (2)
URL | Tag | Source |
---|---|---|
https://www.zerodayinitiative.com/advisories/ZDI-20-1077 | Third Party Advisory |
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://success.trendmicro.com/solution/000252039 | 2020-09-03 |
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Trendmicro Search vendor "Trendmicro" | Deep Security Manager Search vendor "Trendmicro" for product "Deep Security Manager" | 10.0 Search vendor "Trendmicro" for product "Deep Security Manager" and version "10.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | - | - |
Safe
|
Trendmicro Search vendor "Trendmicro" | Deep Security Manager Search vendor "Trendmicro" for product "Deep Security Manager" | 11.0 Search vendor "Trendmicro" for product "Deep Security Manager" and version "11.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | - | - |
Safe
|
Trendmicro Search vendor "Trendmicro" | Deep Security Manager Search vendor "Trendmicro" for product "Deep Security Manager" | 12.0 Search vendor "Trendmicro" for product "Deep Security Manager" and version "12.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | - | - |
Safe
|
Trendmicro Search vendor "Trendmicro" | Vulnerability Protection Search vendor "Trendmicro" for product "Vulnerability Protection" | 2.0 Search vendor "Trendmicro" for product "Vulnerability Protection" and version "2.0" | sp2 |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | - | - |
Safe
|