4 matches found
CVE-2024-5955
Cross-site scripting vulnerability in Trellix ePolicy Orchestrator prior to ePO 5.10 Service Pack 1 Update 3 allows a remote authenticated attacker to craft requests causing arbitrary content to be injected into the response when accessing the epolicy Orchestrator...
CVE-2024-5955
creationtimestamp| type| source ---|---|--- 2024-12-20 05:56:17+00:00| seen| https://infosec.exchange/users/cve/statuses/113683606875514578 2024-12-20 06:15:46+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ldpqdw7r2u2s 2024-12-20 08:23:00+00:00| seen|...
CVE-2024-5955
Cross-site scripting vulnerability in Trellix ePolicy Orchestrator prior to ePO 5.10 Service Pack 1 Update 3 allows a remote authenticated attacker to craft requests causing arbitrary content to be injected into the response when accessing the epolicy Orchestrator...
CVE-2024-5955
Summary: CVE-2024-5955 is a cross-site scripting vulnerability in Trellix ePolicy Orchestrator (ePO) prior to 5.10 Service Pack 1 Update 3. The issue allows a remote authenticated attacker to craft requests that inject arbitrary content into the response when accessing ePolicy Orchestrator. Affec...