GCVE - cpe:2.3:a:trellix:trellix_agent:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:trellix:trellix_agent:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Trellix (`6a68a263-5f87-5bad-bbc0-1b650399118d`)
Product	Trellix Agent (`a76ff29f-5284-5687-86c9-9cbc3acee203`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-1388`	vulnerable	2026-06-03 14:48:55.384890	Details available MEDIUM (6.3) A heap-based overflow vulnerability in TA prior to version 5.7.9 allows a remote user to alter the page heap in the macmnsvc process memory block, resulting in the service becoming unavailable. Published: 2023-06-07T07:32:52.231Z Updated: 2025-01-06T21:05:59.938Z Open on db.gcve.eu Reference links https://kcm.trellix.com/corporate/index?page=content&id=SB10398	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-0977`	vulnerable	2026-06-03 14:48:53.440426	Details available MEDIUM (6.7) A heap-based overflow vulnerability in Trellix Agent (Windows and Linux) version 5.7.8 and earlier, allows a remote user to alter the page heap in the macmnsvc process memory block resulting in the service becoming unavailable. Published: 2023-04-03T15:39:43.527Z Updated: 2025-02-11T14:38:54.711Z Open on db.gcve.eu Reference links https://kcm.trellix.com/corporate/index?page=content&id=SB10396	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-0976`	vulnerable	2026-06-03 14:48:53.440013	Details available MEDIUM (6.3) A command Injection Vulnerability in TA for mac-OS prior to version 5.7.9 allows local users to place an arbitrary file into the /Library/Trellix/Agent/bin/ folder. The malicious file is executed by running the TA deployment feature located in the System Tree. Published: 2023-06-07T07:35:57.484Z Updated: 2025-01-06T21:05:23.765Z Open on db.gcve.eu Reference links https://kcm.trellix.com/corporate/index?page=content&id=SB10398	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-0975`	vulnerable	2026-06-03 14:48:53.437589	Details available HIGH (8.2) A vulnerability exists in Trellix Agent for Windows version 5.7.8 and earlier, that allows local users, during install/upgrade workflow, to replace one of the Agent’s executables before it can be executed. This allows the user to elevate their permissions. Published: 2023-04-03T15:27:34.022Z Updated: 2025-02-11T15:51:57.354Z Open on db.gcve.eu Reference links https://kcm.trellix.com/corporate/index?page=content&id=SB10396	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-3859`	vulnerable	2026-06-03 14:47:59.420686	Details available MEDIUM (6.7) An uncontrolled search path vulnerability exists in Trellix Agent (TA) for Windows in versions prior to 5.7.8. This allows an attacker with admin access, which is required to place the DLL in the restricted Windows System folder, to elevate their privileges to System by placing a malicious DLL there. Published: 2022-11-30T08:29:29.242Z Updated: 2025-04-23T19:28:30.917Z Open on db.gcve.eu Reference links https://kcm.trellix.com/corporate/index?page=content&id=SB10391	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.