6 matches found
CVE-2023-3313
CVE-2023-3313 pertains to an OS command injection in the Trellix Enterprise Security Manager (ESM) certificate API, caused by insufficient neutralization of special elements. The vulnerability could let an unauthorized user with local access execute system commands, potentially escalating privile...
CVE-2024-11482
CVE-2024-11482 affects Trellix Enterprise Security Manager (ESM) 11.6.10. Multiple sources confirm unauthenticated access to the internal Snowservice API, enabling remote code execution via command injection with root privileges. CVSSv3.1 data: Network attack vector, Low attack complexity, No pri...
CVE-2024-11481
CVE-2024-11481 concerns Trellix Enterprise Security Manager (ESM) 11.6.10. The issue enables unauthenticated access to the internal Snowservice API, with improper path traversal handling and insecure forwarding to an AJP backend, lacking authentication for internal API endpoints. Documents indica...
CVE-2023-6071
CVE-2023-6071 affects Trellix Enterprise Security Manager (ESM) prior to 11.6.9. The issue is an improper neutralization of special elements in a command when adding a new data source, enabling a remote administrator to execute arbitrary code as root. Documents confirm the vulnerability, its root...
CVE-2023-3314
CVE-2023-3314 affects Trellix Enterprise Security Manager (and related entries) where a failure to fully sanitize zip file processing allows an authorized user to control the .zip application, enabling arbitrary command execution or privilege escalation. Public sources cite vulnerable versions (e...
CVE-2023-6070
The connected sources provide concrete details for CVE-2023-6070: an SSRF vulnerability in Trellix ESM (Enterprise Security Manager) versions prior to 11.6.8. A low-privileged authenticated user can upload arbitrary content through the certificate validation functionality, potentially altering co...