Auto-merge PR#4963

2025-06-19 17:32:41 +00:00 · 2020-10-02 18:00:23 -04:00 · 2020-10-02 18:00:23 -04:00 · a599978186
commit a599978186
parent e8201ef649 c81491c9dc
1 changed files with 62 additions and 17 deletions
--- a/2020/25xxx/CVE-2020-25776.json
+++ b/2020/25xxx/CVE-2020-25776.json
@ -1,18 +1,63 @@
 {
-    "data_type": "CVE",
+	"CVE_data_meta" : {
-    "data_format": "MITRE",
+		"ASSIGNER" : "security@trendmicro.com",
-    "data_version": "4.0",
+		"ID" : "CVE-2020-25776",
-    "CVE_data_meta": {
+		"STATE" : "PUBLIC"
-        "ID": "CVE-2020-25776",
+	},
-        "ASSIGNER": "cve@mitre.org",
+	"affects" : {
-        "STATE": "RESERVED"
+		"vendor" : {
-    },
+			"vendor_data" : [
-    "description": {
+				{
-        "description_data": [
+					"product" : {
-            {
+						"product_data" : [
-                "lang": "eng",
+							{
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+								"product_name" : "Trend Micro Antivirus for Mac (Consumer)",
-            }
+								"version" : {
-        ]
+									"version_data" : [
-    }
+										{
-}
+											"version_value" : "2020 (v10.x)"
 										}
 									]
 								}
 							}
 						]
 					},
 					"vendor_name" : "Trend Micro"
 				}
 			]
 		}
 	},
 	"data_format" : "MITRE",
 	"data_type" : "CVE",
 	"data_version" : "4.0",
 	"description" : {
 		"description_data" : [
 			{
 				"lang" : "eng",
 				"value" : "Trend Micro Antivirus for Mac 2020 (Consumer) is vulnerable to a symbolic link privilege escalation attack where an attacker could exploit a critical file on the system to escalate their privileges.\r\n\r\nAn attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability."
 			}
 		]
 	},
 	"problemtype" : {
 		"problemtype_data" : [
 			{
 				"description" : [
 					{
 						"lang" : "eng",
 						"value" : "Symbolic Link Privilege Escalation"
 					}
 				]
 			}
 		]
 	},
 	"references" : {
 		"reference_data" : [
 			{
 				"url" : "https://helpcenter.trendmicro.com/en-us/article/TMKA-09924"
 			},
 			{
 				"url" : "https://www.zerodayinitiative.com/advisories/ZDI-20-1236/"
 			}
 		]
 	}
 }