304 matches found
Leaked Black Basta Chats Suggest Russian Officials Aided Leader's Escape from Armenia
The recently leaked trove of internal chat logs among members of the Black Basta ransomware operation has revealed possible connections between the e-crime gang and Russian authorities. The leak, containing over 200,000 messages from September 2023 to September 2024, was published by a Telegram...
The vulnerability of the application programming interface of the Trellix Enterprise Security Manager (ESM) system, which allows a perpetrator to execute arbitrary commands.
The vulnerability of the application programming interface of the Trellix Enterprise Security Manager ESM system for monitoring, analyzing, and managing security threats is related to the failure to take measures to neutralize special elements used in the operating system’s command set. Exploitin...
CVE-2024-5671
Insecure Deserialization in some workflows of the IPS Manager allows unauthenticated remote attackers to perform arbitrary code execution and access to the vulnerable Trellix IPS Manager...
CVE-2024-4844
Hardcoded credentials vulnerability in Trellix ePolicy Orchestrator ePO on Premise prior to 5.10 Service Pack 1 Update 2 allows an attacker with admin privileges on the ePO server to read the contents of the orion.keystore file, allowing them to access the ePO database encryption key. This was...
CVE-2024-0206
A symbolic link manipulation vulnerability in Trellix Anti-Malware Engine prior to the January 2024 release allows an authenticated local user to potentially gain an escalation of privileges. This was achieved by adding an entry to the registry under the Trellix ENS registry folder with a symboli...
Trellix HX 安全漏洞
Trellix HX is an endpoint security solution from FireEye USA Trellix. A security vulnerability exists in Trellix HX version 10.0.0. An attacker exploiting this vulnerability could cause a denial of service by sending specially crafted data...
CVE-2024-5955
Cross-site scripting vulnerability in Trellix ePolicy Orchestrator prior to ePO 5.10 Service Pack 1 Update 3 allows a remote authenticated attacker to craft requests causing arbitrary content to be injected into the response when accessing the epolicy Orchestrator...
CVE-2024-5955
Cross-site scripting vulnerability in Trellix ePolicy Orchestrator prior to ePO 5.10 Service Pack 1 Update 3 allows a remote authenticated attacker to craft requests causing arbitrary content to be injected into the response when accessing the epolicy Orchestrator...
CVE-2024-5955
Cross-site scripting vulnerability in Trellix ePolicy Orchestrator prior to ePO 5.10 Service Pack 1 Update 3 allows a remote authenticated attacker to craft requests causing arbitrary content to be injected into the response when accessing the epolicy Orchestrator...
CVE-2024-5955
Summary: CVE-2024-5955 is a cross-site scripting vulnerability in Trellix ePolicy Orchestrator (ePO) prior to 5.10 Service Pack 1 Update 3. The issue allows a remote authenticated attacker to craft requests that inject arbitrary content into the response when accessing ePolicy Orchestrator. Affec...
Trellix ePolicy Orchestrator 跨站脚本漏洞
Trellix ePolicy Orchestrator is a centralized security management platform from FireEye Trellix USA. A cross-site scripting vulnerability exists in Trellix ePolicy Orchestrator versions prior to 5.10 Service Pack 1 Update 3. An attacker could use this vulnerability to inject arbitrary content int...
PT-2024-37268 · Trellix · Trellix Epolicy Orchestrator
Name of the Vulnerable Software and Affected Versions: Trellix ePolicy Orchestrator versions prior to 5.10 Service Pack 1 Update 3 Description: A cross-site scripting issue allows a remote authenticated attacker to craft requests that cause arbitrary content to be injected into the response when...
Trellix Data Loss Prevention SQL注入漏洞
Trellix Data Loss Prevention Trellix DLP is a data loss prevention solution from American FireEye Trellix. It provides a comprehensive scan of inbound and outbound network traffic for all ports, protocols, etc. Trellix Data Loss Prevention Trellix DLP version 11.11.1.3 suffers from a SQL injectio...
Trellix Data Loss Prevention 安全漏洞
Trellix Data Loss Prevention Trellix DLP is a data loss prevention solution from American FireEye Trellix. It provides a comprehensive scan of inbound and outbound network traffic for all ports, protocols, etc. A security vulnerability exists in Trellix Data Loss Prevention Trellix DLP version...
Trellix Enterprise Security Manager 安全漏洞
Trellix Enterprise Security Manager Trellix ESM is an application from American FireEye Trellix, Inc. Used for real-time monitoring and analysis enables you to quickly prioritize, investigate and respond to hidden threats. A security vulnerability exists in Trellix Enterprise Security Manager...
PT-2024-9163 · Trellix · Trellix Enterprise Security Manager
Name of the Vulnerable Software and Affected Versions: Trellix Enterprise Security Manager ESM version 11.6.10 Description: A vulnerability in the system allows unauthenticated access to the internal Snowservice API, leading to improper handling of path traversal and insecure forwarding to an AJP...
PT-2024-9162 · Trellix · Trellix Enterprise Security Manager
Name of the Vulnerable Software and Affected Versions: Trellix Enterprise Security Manager version 11.6.10 Description: A vulnerability in Trellix Enterprise Security Manager allows unauthenticated access to the internal Snowservice API and enables remote code execution through command injection,...
Trellix Enterprise Security Manager 安全漏洞
Trellix Enterprise Security Manager Trellix ESM is an application from American FireEye Trellix, Inc. Used for real-time monitoring and analysis enables you to quickly prioritize, investigate and respond to hidden threats. A security vulnerability exists in Trellix Enterprise Security Manager...
Malware Exploits Trusted Avast Anti-Rootkit Driver to Disable Security Software
Malware exploits legitimate Avast anti-rootkit driver to disable security software. Trellix researchers uncover the attack and provide mitigation steps...
When Guardians Become Predators: How Malware Corrupts the Protectors
When Guardians Become Predators: How Malware Corrupts the Protectors By Trellix · November 20, 2024 This blog was also written by Trishaan Kalra Introduction We often trust our security software to stand as an unbreakable wall against malware and attacks, but what happens when that very wall is...