CVE-2020-8607

Name: CVE-2020-8607
Creator: NVD / NIST
Published: 2020-08-05T14:15:13.53+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

MEDIUMCVSS 6.7/10EPSS 0.66%

Last modified Jun 17, 2026

CVE-2020-8607 is a medium-severity vulnerability rated 6.7/10 on the CVSS scale. An input validation vulnerability found in multiple Trend Micro products utilizing a particular version of a specific rootkit protection driver could allow an attacker in user-mode with administrator permissions to abuse the driver to modify a kernel address that may cause a system crash or potentially lead to code execution in kernel mode. An attacker must already have obtained administrator access on the target machine (either legitimately or via a separate unrelated attack) to exploit this vulnerability.. EPSS estimates a 0.66% chance of exploitation in the next 30 days.

Description

An input validation vulnerability found in multiple Trend Micro products utilizing a particular version of a specific rootkit protection driver could allow an attacker in user-mode with administrator permissions to abuse the driver to modify a kernel address that may cause a system crash or potentially lead to code execution in kernel mode. An attacker must already have obtained administrator access on the target machine (either legitimately or via a separate unrelated attack) to exploit this vulnerability.

Metrics

CVSS 3.1

6.7/10

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

0.66%

46.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-20

Affected Software

Vendor	Product	Versions	Update
Trendmicro	Antivirus Toolkit	< 1.62.1240	—
Trendmicro	Apex One	2019	—
Trendmicro	Apex One	saas	—
Trendmicro	Deep Security	9.6	—
Trendmicro	Deep Security	10.0	—
Trendmicro	Deep Security	11.0	—
Trendmicro	Deep Security	12.0	—
Trendmicro	Officescan	xg	Sp1
Trendmicro	Officescan Business Security	9.0	—
Trendmicro	Officescan Business Security	9.5	—
Trendmicro	Officescan Business Security	10.0	Sp1
Trendmicro	Officescan Business Security Service	All versions	—
Trendmicro	Officescan Cloud	15	—
Trendmicro	Officescan Cloud	16.0	—
Trendmicro	Online Scan	8.0	—
Trendmicro	Portable Security	2.0	—
Trendmicro	Portable Security	3.0	—
Trendmicro	Rootkit Buster	2.2	—
Trendmicro	Safe Lock	All versions	—
Trendmicro	Safe Lock	2.0	Sp1
Trendmicro	Serverprotect	5.8	—
Trendmicro	Serverprotect	6.0	—

References

https://jvn.jp/en/vu/JVNVU99160193/index.htmlThird Party Advisory
https://jvn.jp/vu/JVNVU99160193/Third Party Advisory
https://success.trendmicro.com/jp/solution/000260748Vendor Advisory
https://success.trendmicro.com/solution/000260713Patch, Vendor Advisory
https://jvn.jp/en/vu/JVNVU99160193/index.htmlThird Party Advisory
https://jvn.jp/vu/JVNVU99160193/Third Party Advisory
https://success.trendmicro.com/jp/solution/000260748Vendor Advisory
https://success.trendmicro.com/solution/000260713Patch, Vendor Advisory

Timeline

Published: Aug 5, 2020
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2020-8607?

How severe is CVE-2020-8607?

CVE-2020-8607 has a CVSS score of 6.7/10 (MEDIUM severity). The EPSS model estimates a 0.66% probability of exploitation in the next 30 days.

How do I fix CVE-2020-8607?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2020-8607?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST