CVE-2020-8598: 
Trend Micro Apex One Agent vulnerability analysis and mitigation

CVE-2020-8598 is a critical severity vulnerability (CVSS v3 score of 10) affecting Trend Micro Apex One and OfficeScan server. The vulnerability was disclosed on March 16, 2020, and affects Apex One (on premise) version 2019 and OfficeScan versions XG SP1 and XG for Windows platforms (CERT-EU Advisory, Threatpost).

The vulnerability exists due to the server containing a vulnerable service DLL file that could allow a remote attacker to execute arbitrary code on affected installations with SYSTEM level privileges. Notably, authentication is not required to exploit this vulnerability, making it particularly dangerous (CERT-EU Advisory).

If successfully exploited, the vulnerability allows an unauthenticated, remote attacker to execute arbitrary code on affected installations with SYSTEM level privileges, giving them complete control over the affected system (Threatpost).

Trend Micro has released security updates to address this vulnerability. Users are advised to update to the following versions: Apex One (on premise) CP 2117, OfficeScan XG SP1 CP 5474, or OfficeScan XG CP 1988. Additionally, users are encouraged to review and ensure the product servers and management consoles are restricted to trusted networks and/or users as appropriate (CERT-EU Advisory).