CVE Tools

trellix

Security ProductsUScommercial

10

Cumulative CVEs

2

Monthly snapshots

#130

Peak rank

Top products

epolicy orchestrator2 enterprise security manager2 esm1

Latest CVEs

The 15 most recently published vulnerabilities affecting trellix.

CVE-2025-14963A vulnerability identified in the HX Agent driver file fekern.sys allowed a threat actor with local user access the ability to gain elevated system privileges. Utilization of a Bring Your Own Vuln...7.8Feb 24, 2026
CVE-2025-3773A sensitive information exposure vulnerability in System Information Reporter (SIR) 1.0.3 and prior allows an authenticated non-admin local user to extract sensitive information stored in a regist...5.5Jun 26, 2025
CVE-2025-3722A path traversal vulnerability in System Information Reporter (SIR) 1.0.3 and prior allowed an authenticated high privileged user to issue malicious ePO post requests to System Information Report...4.4Jun 26, 2025
CVE-2025-3771A path or symbolic link manipulation vulnerability in SIR 1.0.3 and prior versions allows an authenticated non-admin local user to overwrite system files with SIR backup files, which can potentiall...7.1Jun 26, 2025
CVE-2025-0618A malicious third party could invoke a persistent denial of service vulnerability in FireEye EDR agent by sending a specially-crafted tamper protection event to the HX service to trigger an excepti...6.5Apr 23, 2025
CVE-2025-0617An attacker with access to an HX 10.0.0 and previous versions, may send specially-crafted data to the HX console. The malicious detection would then trigger file parsing containing exponential en...5.9Jan 29, 2025
CVE-2024-5955Cross-site scripting vulnerability in Trellix ePolicy Orchestrator prior to ePO 5.10 Service Pack 1 Update 3 allows a remote authenticated attacker to craft requests causing arbitrary content to be...5.4Dec 20, 2024
CVE-2024-9679A Hardcoded Cryptographic key vulnerability existed in DLP Extension 11.11.1.3 which allowed the decryption of previously encrypted user credentials.5.3Dec 16, 2024
CVE-2024-9678An SQL Injection vulnerability existed in DLP Extension 11.11.1.3. The vulnerability allowed an attacker to perform arbitrary SQL queries potentially leading to command execution.4.9Dec 16, 2024
CVE-2024-11482A vulnerability in ESM 11.6.10 allows unauthenticated access to the internal Snowservice API and enables remote code execution through command injection, executed as the root user.9.8Nov 29, 2024
CVE-2024-11481A vulnerability in ESM 11.6.10 allows unauthenticated access to the internal Snowservice API. This leads to improper handling of path traversal, insecure forwarding to an AJP backend without adequa...8.2Nov 29, 2024
CVE-2024-5957This vulnerability allows unauthenticated remote attackers to bypass authentication and gain APIs access of the Manager.6.3Sep 5, 2024
CVE-2024-5956This vulnerability allows unauthenticated remote attackers to bypass authentication and gain partial data access to the vulnerable Trellix IPS Manager with garbage data in response mostly6.5Sep 5, 2024
CVE-2024-7608An authenticated user can access the restricted files from NX, EX, FX, AX, IVX and CMS using path traversal.5.9Aug 27, 2024
CVE-2024-5731A vulnerability in the IPS Manager, Central Manager, and Local Manager communication workflow allows an attacker to control the destination of a request by manipulating the parameter, thereby lever...6.8Jun 14, 2024