Vulnerabilities > Trellix
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-07-03 | CVE-2023-3313 | OS Command Injection vulnerability in Trellix Enterprise Security Manager An OS common injection vulnerability exists in the ESM certificate API, whereby incorrectly neutralized special elements may have allowed an unauthorized user to execute system command injection for the purpose of privilege escalation or to execute arbitrary commands. | 7.8 |
2023-07-03 | CVE-2023-3438 | Unquoted Search Path or Element vulnerability in Trellix Move An unquoted Windows search path vulnerability existed in the install the MOVE 4.10.x and earlier Windows install service (mvagtsce.exe). | 7.8 |
2023-06-07 | CVE-2023-0976 | Uncontrolled Search Path Element vulnerability in Trellix Agent 5.7.7/5.7.8 A command Injection Vulnerability in TA for mac-OS prior to version 5.7.9 allows local users to place an arbitrary file into the /Library/Trellix/Agent/bin/ folder. | 7.8 |
2023-06-07 | CVE-2023-1388 | Out-of-bounds Write vulnerability in Trellix Agent 5.7.7/5.7.8 A heap-based overflow vulnerability in TA prior to version 5.7.9 allows a remote user to alter the page heap in the macmnsvc process memory block, resulting in the service becoming unavailable. | 8.1 |
2023-04-03 | CVE-2023-0975 | Improper Preservation of Permissions vulnerability in Trellix Agent 5.7.7/5.7.8 A vulnerability exists in Trellix Agent for Windows version 5.7.8 and earlier, that allows local users, during install/upgrade workflow, to replace one of the Agent’s executables before it can be executed. | 7.8 |
2023-04-03 | CVE-2023-0977 | Out-of-bounds Write vulnerability in Trellix Agent 5.7.7/5.7.8 A heap-based overflow vulnerability in Trellix Agent (Windows and Linux) version 5.7.8 and earlier, allows a remote user to alter the page heap in the macmnsvc process memory block resulting in the service becoming unavailable. | 6.5 |
2023-03-13 | CVE-2023-0978 | Command Injection vulnerability in multiple products A command injection vulnerability in Trellix Intelligent Sandbox CLI for version 5.2 and earlier, allows a local user to inject and execute arbitrary operating system commands using specially crafted strings. | 6.7 |
2023-02-02 | CVE-2023-0400 | Uncontrolled Search Path Element vulnerability in Trellix Data Loss Prevention 11.9.0/11.9.100 The protection bypass vulnerability in DLP for Windows 11.9.x is addressed in version 11.10.0. | 8.2 |
2023-01-18 | CVE-2023-0214 | Cross-site Scripting vulnerability in Trellix Skyhigh Secure web Gateway A cross-site scripting vulnerability in Skyhigh SWG in main releases 11.x prior to 11.2.6, 10.x prior to 10.2.17, and controlled release 12.x prior to 12.0.1 allows a remote attacker to craft SWG-specific internal requests with URL paths to any third-party website, causing arbitrary content to be injected into the response when accessed through SWG. | 6.1 |
2022-12-16 | CVE-2022-4326 | Improper Preservation of Permissions vulnerability in Trellix Endpoint Security Improper preservation of permissions vulnerability in Trellix Endpoint Agent (xAgent) prior to V35.31.22 on Windows allows a local user with administrator privileges to bypass the product protection to uninstall the agent via incorrectly applied permissions in the removal protection functionality. | 6.0 |