Vulnerabilities > CVE-2023-0975 - Improper Preservation of Permissions vulnerability in Trellix Agent 5.7.7/5.7.8

047910
CVSS 7.8 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
trellix
CWE-281

Summary

A vulnerability exists in Trellix Agent for Windows version 5.7.8 and earlier, that allows local users, during install/upgrade workflow, to replace one of the Agent’s executables before it can be executed. This allows the user to elevate their permissions.

Vulnerable Configurations

Part Description Count
Application
Trellix
3
OS
Microsoft
1

Common Weakness Enumeration (CWE)