How severe is CVE-2020-27013?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.4 out of 10.

What type of vulnerability is CVE-2020-27013?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2020-27013 - MEDIUM Severity | CVSS 4.4

Vulnerability Description

Trend Micro Antivirus for Mac 2020 (Consumer) contains a vulnerability in the product that occurs when a webserver is started that implements an API with several properties that can be read and written to allowing the attacker to gather and modify sensitive product and user data. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Related Vulnerabilities

CVE-2016-0667

MEDIUM

CVSS:4.4(Medium)

Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows local users to affect availability via vectors related to Locking.

NVD-CWE-Other2016

CVE-2016-0674

MEDIUM

CVSS:4.4(Medium)

Unspecified vulnerability in the Siebel Core - Common Components component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows local users to affect confidentiality and integrity via vectors related to Email.

NVD-CWE-Other2016

CVE-2016-3480

MEDIUM

CVSS:4.4(Medium)

Unspecified vulnerability in the Solaris Cluster component in Oracle Sun Systems Products Suite 3.3 and 4.3 allows local users to affect confidentiality via vectors related to HA for Postgresql.

NVD-CWE-Other2016

CVE-2016-3488

MEDIUM

CVSS:4.4(Medium)

Unspecified vulnerability in the DB Sharding component in Oracle Database Server 12.1.0.2 allows local users to affect integrity via unknown vectors.

NVD-CWE-Other2016

CVE-2016-5584

MEDIUM

CVSS:4.4(Medium)

Unspecified vulnerability in Oracle MySQL 5.5.52 and earlier, 5.6.33 and earlier, and 5.7.15 and earlier allows remote administrators to affect confidentiality via vectors related to Server: Security:...

NVD-CWE-Other2016

CVE-2016-7155

MEDIUM

CVSS:4.4(Medium)

hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (out-of-bounds access or infinite loop, and QEMU process crash) via a crafted page c...

NVD-CWE-Other2016