trellix

intrusion_prevention_system_manager

3 known vulnerabilities · sorted by CVSS score

CVE-2024-5956

This vulnerability allows unauthenticated remote attackers to bypass authentication and gain partial data access to the vulnerable Trellix IPS Manager with garbage data in response mostly

trellix / intrusion_prevention_system_manager

Network

Published Sep 5, 2024

CVE-2024-5957

MEDIUM6.3

This vulnerability allows unauthenticated remote attackers to bypass authentication and gain APIs access of the Manager.

trellix / intrusion_prevention_system_manager

Network

Published Sep 5, 2024

CVE-2022-3340

MEDIUM5.9

XML External Entity (XXE) vulnerability in Trellix IPS Manager prior to 10.1 M8 allows a remote authenticated administrator to perform XXE attack in the administrator interface part of the interface, which allows a saved XML configuration file to be imported.

trellix / intrusion_prevention_system_manager+2

Network

Published Nov 4, 2022