Lucene search

TrellixCVELIST:CVE-2023-0976

HistoryJun 07, 2023 - 7:35 a.m.

CVE-2023-0976

2023-06-0707:35:57

CWE-427

trellix

www.cve.org

command injection

vulnerability

macos

arbitrary file

execution

deployment feature

system tree

6.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

0.0004 Low

EPSS

Percentile

10.0%

JSON

A command Injection Vulnerability in TA for mac-OS prior to version 5.7.9 allows local users to place an arbitrary file into the /Library/Trellix/Agent/bin/ folder. The malicious file is executed by running the TA deployment feature located in the System Tree.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "MacOS"
    ],
    "product": "Trellix Agent",
    "vendor": "Trellix",
    "versions": [
      {
        "status": "affected",
        "version": "5.7.8"
      }
    ]
  }
]

References

kcm.trellix.com/corporate/index?page=content&id=SB10398