A command injection vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow an attacker to execute arbitrary code on an affected system. An attacker must first obtain admin/root privileges on the SPLX console to exploit this vulnerability.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24561
Reference (s):
- https://success.trendmicro.com/solution/000268419
- URL: https://success.trendmicro.com/solution/000268419