Known Vulnerabilities for products from Trellix
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Trellix".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2024-0310 json | 6.1 - MEDIUM | 2024-01-10 | 2024-01-17 | |
| CVE-2024-0213 json | 7.8 - HIGH | 2024-01-09 | 2024-01-12 | |
| CVE-2024-0206 json | 7.8 - HIGH | 2024-01-09 | 2024-01-16 | |
| CVE-2023-6071 json | 7.2 - HIGH | 2023-11-30 | 2023-12-05 | |
| CVE-2023-6070 json | 4.3 - MEDIUM | 2023-11-29 | 2023-12-05 | |
| CVE-2023-5607 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.2 - HIGH | 2023-11-27 | 2023-12-01 |
| CVE-2023-4814 json | A Privilege escalation vulnerability exists in Trellix Windows DLP endpoint for windows which can be abused to delete any fi... | 7.1 - HIGH | 2023-09-14 | 2023-09-19 |
| CVE-2023-3665 json | A code injection vulnerability in Trellix ENS 10.7.0 April 2023 release and earlier, allowed a local user to disable the ENS... | 7.8 - HIGH | 2023-10-04 | 2023-10-10 |
| CVE-2023-3438 json | An unquoted Windows search path vulnerability existed in the install the MOVE 4.10.x and earlier Windows install service (mv... | 7.8 - HIGH | 2023-07-03 | 2023-07-14 |
| CVE-2023-3314 json | A vulnerability arises out of a failure to comprehensively sanitize the processing of a zip file(s). Incomplete neutralizati... | 8.8 - HIGH | 2023-07-03 | 2023-07-11 |
| CVE-2023-3313 json | An OS common injection vulnerability exists in the ESM certificate API, whereby incorrectly neutralized special elements may... | 7.8 - HIGH | 2023-07-03 | 2023-07-11 |
| CVE-2023-1388 json | A heap-based overflow vulnerability in TA prior to version 5.7.9 allows a remote user to alter the page heap in the macmnsvc... | 8.1 - HIGH | 2023-06-07 | 2023-06-13 |
| CVE-2023-0978 json | A command injection vulnerability in Trellix Intelligent Sandbox CLI for version 5.2 and earlier, allows a local user to inje... | 6.7 - MEDIUM | 2023-03-13 | 2023-11-07 |
| CVE-2023-0977 json | A heap-based overflow vulnerability in Trellix Agent (Windows and Linux) version 5.7.8 and earlier, allows a remote user to a... | 6.5 - MEDIUM | 2023-04-03 | 2023-11-07 |
| CVE-2023-0976 json | A command Injection Vulnerability in TA for mac-OS prior to version 5.7.9 allows local users to place an arbitrary file into... | 7.8 - HIGH | 2023-06-07 | 2023-06-13 |
| CVE-2023-0975 json | A vulnerability exists in Trellix Agent for Windows version 5.7.8 and earlier, that allows local users, during install/upgrad... | 7.8 - HIGH | 2023-04-03 | 2023-11-07 |
| CVE-2023-0400 json | The protection bypass vulnerability in DLP for Windows 11.9.x is addressed in version 11.10.0. This allowed a local user to b... | 8.2 - HIGH | 2023-02-02 | 2023-11-07 |
| CVE-2023-0214 json | A cross-site scripting vulnerability in Skyhigh SWG in main releases 11.x prior to 11.2.6, 10.x prior to 10.2.17, and control... | 6.1 - MEDIUM | 2023-01-18 | 2023-11-07 |
| CVE-2022-4326 json | Improper preservation of permissions vulnerability in Trellix Endpoint Agent (xAgent) prior to V35.31.22 on Windows allows a ... | 6 - MEDIUM | 2022-12-16 | 2023-11-07 |
| CVE-2022-3859 json | An uncontrolled search path vulnerability exists in Trellix Agent (TA) for Windows in versions prior to 5.7.8. This allows an... | 6.7 - MEDIUM | 2022-11-30 | 2023-11-07 |