Lucene search
K

304 matches found

The Hacker News
The Hacker News
added 2025/03/19 1:50 p.m.17 views

Leaked Black Basta Chats Suggest Russian Officials Aided Leader's Escape from Armenia

The recently leaked trove of internal chat logs among members of the Black Basta ransomware operation has revealed possible connections between the e-crime gang and Russian authorities. The leak, containing over 200,000 messages from September 2023 to September 2024, was published by a Telegram...

7.5AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/02/06 12:0 a.m.6 views

The vulnerability of the application programming interface of the Trellix Enterprise Security Manager (ESM) system, which allows a perpetrator to execute arbitrary commands.

The vulnerability of the application programming interface of the Trellix Enterprise Security Manager ESM system for monitoring, analyzing, and managing security threats is related to the failure to take measures to neutralize special elements used in the operating system’s command set. Exploitin...

10CVSS7.8AI score0.02544EPSS
Exploits1References3Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/05 6:35 a.m.4 views

CVE-2024-5671

Insecure Deserialization in some workflows of the IPS Manager allows unauthenticated remote attackers to perform arbitrary code execution and access to the vulnerable Trellix IPS Manager...

9.8CVSS8.1AI score0.00929EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 12:3 a.m.5 views

CVE-2024-4844

Hardcoded credentials vulnerability in Trellix ePolicy Orchestrator ePO on Premise prior to 5.10 Service Pack 1 Update 2 allows an attacker with admin privileges on the ePO server to read the contents of the orion.keystore file, allowing them to access the ePO database encryption key. This was...

7.5CVSS6.9AI score0.00234EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/04 10:56 p.m.14 views

CVE-2024-0206

A symbolic link manipulation vulnerability in Trellix Anti-Malware Engine prior to the January 2024 release allows an authenticated local user to potentially gain an escalation of privileges. This was achieved by adding an entry to the registry under the Trellix ENS registry folder with a symboli...

7.8CVSS7AI score0.00184EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/29 12:0 a.m.5 views

Trellix HX 安全漏洞

Trellix HX is an endpoint security solution from FireEye USA Trellix. A security vulnerability exists in Trellix HX version 10.0.0. An attacker exploiting this vulnerability could cause a denial of service by sending specially crafted data...

5.9CVSS6.6AI score0.0038EPSS
Exploits0References1
NVD
NVD
added 2024/12/20 6:15 a.m.31 views

CVE-2024-5955

Cross-site scripting vulnerability in Trellix ePolicy Orchestrator prior to ePO 5.10 Service Pack 1 Update 3 allows a remote authenticated attacker to craft requests causing arbitrary content to be injected into the response when accessing the epolicy Orchestrator...

5.4CVSS0.00356EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/20 5:53 a.m.27 views

CVE-2024-5955

Cross-site scripting vulnerability in Trellix ePolicy Orchestrator prior to ePO 5.10 Service Pack 1 Update 3 allows a remote authenticated attacker to craft requests causing arbitrary content to be injected into the response when accessing the epolicy Orchestrator...

5.4CVSS0.00356EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/20 5:53 a.m.10 views

CVE-2024-5955

Cross-site scripting vulnerability in Trellix ePolicy Orchestrator prior to ePO 5.10 Service Pack 1 Update 3 allows a remote authenticated attacker to craft requests causing arbitrary content to be injected into the response when accessing the epolicy Orchestrator...

5.4CVSS6.2AI score0.00356EPSS
Exploits0References1
CVE
CVE
added 2024/12/20 5:53 a.m.83 views

CVE-2024-5955

Summary: CVE-2024-5955 is a cross-site scripting vulnerability in Trellix ePolicy Orchestrator (ePO) prior to 5.10 Service Pack 1 Update 3. The issue allows a remote authenticated attacker to craft requests that inject arbitrary content into the response when accessing ePolicy Orchestrator. Affec...

5.4CVSS6.3AI score0.00356EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/20 12:0 a.m.4 views

Trellix ePolicy Orchestrator 跨站脚本漏洞

Trellix ePolicy Orchestrator is a centralized security management platform from FireEye Trellix USA. A cross-site scripting vulnerability exists in Trellix ePolicy Orchestrator versions prior to 5.10 Service Pack 1 Update 3. An attacker could use this vulnerability to inject arbitrary content int...

5.4CVSS6AI score0.00356EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/12/20 12:0 a.m.7 views

PT-2024-37268 · Trellix · Trellix Epolicy Orchestrator

Name of the Vulnerable Software and Affected Versions: Trellix ePolicy Orchestrator versions prior to 5.10 Service Pack 1 Update 3 Description: A cross-site scripting issue allows a remote authenticated attacker to craft requests that cause arbitrary content to be injected into the response when...

5.4CVSS6.4AI score0.00356EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/12/16 12:0 a.m.3 views

Trellix Data Loss Prevention SQL注入漏洞

Trellix Data Loss Prevention Trellix DLP is a data loss prevention solution from American FireEye Trellix. It provides a comprehensive scan of inbound and outbound network traffic for all ports, protocols, etc. Trellix Data Loss Prevention Trellix DLP version 11.11.1.3 suffers from a SQL injectio...

4.9CVSS8.5AI score0.00744EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/16 12:0 a.m.2 views

Trellix Data Loss Prevention 安全漏洞

Trellix Data Loss Prevention Trellix DLP is a data loss prevention solution from American FireEye Trellix. It provides a comprehensive scan of inbound and outbound network traffic for all ports, protocols, etc. A security vulnerability exists in Trellix Data Loss Prevention Trellix DLP version...

5.3CVSS6.7AI score0.00368EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/29 12:0 a.m.4 views

Trellix Enterprise Security Manager 安全漏洞

Trellix Enterprise Security Manager Trellix ESM is an application from American FireEye Trellix, Inc. Used for real-time monitoring and analysis enables you to quickly prioritize, investigate and respond to hidden threats. A security vulnerability exists in Trellix Enterprise Security Manager...

8.2CVSS7AI score0.0043EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/29 12:0 a.m.9 views

PT-2024-9163 · Trellix · Trellix Enterprise Security Manager

Name of the Vulnerable Software and Affected Versions: Trellix Enterprise Security Manager ESM version 11.6.10 Description: A vulnerability in the system allows unauthenticated access to the internal Snowservice API, leading to improper handling of path traversal and insecure forwarding to an AJP...

9.8CVSS7.6AI score0.02544EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2024/11/29 12:0 a.m.5 views

PT-2024-9162 · Trellix · Trellix Enterprise Security Manager

Name of the Vulnerable Software and Affected Versions: Trellix Enterprise Security Manager version 11.6.10 Description: A vulnerability in Trellix Enterprise Security Manager allows unauthenticated access to the internal Snowservice API and enables remote code execution through command injection,...

10CVSS8.8AI score0.02544EPSS
Exploits1References17
CNNVD
CNNVD
added 2024/11/29 12:0 a.m.5 views

Trellix Enterprise Security Manager 安全漏洞

Trellix Enterprise Security Manager Trellix ESM is an application from American FireEye Trellix, Inc. Used for real-time monitoring and analysis enables you to quickly prioritize, investigate and respond to hidden threats. A security vulnerability exists in Trellix Enterprise Security Manager...

9.8CVSS7.8AI score0.02544EPSS
Exploits1References1
HackRead
HackRead
added 2024/11/25 12:38 p.m.13 views

Malware Exploits Trusted Avast Anti-Rootkit Driver to Disable Security Software

Malware exploits legitimate Avast anti-rootkit driver to disable security software. Trellix researchers uncover the attack and provide mitigation steps...

7.4AI score
Exploits0
Trellix
Trellix
added 2024/11/20 12:0 a.m.6 views

When Guardians Become Predators: How Malware Corrupts the Protectors

When Guardians Become Predators: How Malware Corrupts the Protectors By Trellix · November 20, 2024 This blog was also written by Trishaan Kalra Introduction We often trust our security software to stand as an unbreakable wall against malware and attacks, but what happens when that very wall is...

5.8AI score
Exploits0
Rows per page
Query Builder