Trellix Agent 5.7.7

CPE Details

Trellix Agent 5.7.7
trellix
agent
5.7.7
2023-04-07
12h07 +00:00
2023-04-07
12h24 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:trellix:agent:5.7.7:*:*:*:*:*:*:*

Informations

Vendor

trellix

Product

agent

Version

5.7.7

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2023-0976 2023-06-07 07h35 +00:00 A command Injection Vulnerability in TA for mac-OS prior to version 5.7.9 allows local users to place an arbitrary file into the /Library/Trellix/Agent/bin/ folder. The malicious file is executed by running the TA deployment feature located in the System Tree.
7.8
Haute
CVE-2023-1388 2023-06-07 07h32 +00:00 A heap-based overflow vulnerability in TA prior to version 5.7.9 allows a remote user to alter the page heap in the macmnsvc process memory block, resulting in the service becoming unavailable.
8.1
Haute
CVE-2023-0977 2023-04-03 15h39 +00:00 A heap-based overflow vulnerability in Trellix Agent (Windows and Linux) version 5.7.8 and earlier, allows a remote user to alter the page heap in the macmnsvc process memory block resulting in the service becoming unavailable.
6.7
Moyen
CVE-2023-0975 2023-04-03 15h27 +00:00 A vulnerability exists in Trellix Agent for Windows version 5.7.8 and earlier, that allows local users, during install/upgrade workflow, to replace one of the Agent’s executables before it can be executed. This allows the user to elevate their permissions.
8.2
Haute