CVE-2023-0976

Опубликовано: 07 июн. 2023

Источник: nvd

CVSS3: 6.3

CVSS3: 7.8

EPSS Низкий

Описание

A command Injection Vulnerability in TA for mac-OS prior to version 5.7.9 allows local users to place an arbitrary file into the /Library/Trellix/Agent/bin/ folder. The malicious file is executed by running the TA deployment feature located in the System Tree.

Ссылки

https://kcm.trellix.com/corporate/index?page=content&id=SB10398
Vendor Advisory
https://kcm.trellix.com/corporate/index?page=content&id=SB10398
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:trellix:agent:*:*:*:*:*:*:*:*

Версия до 5.7.9 (исключая)

cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

EPSS

Процентиль: 36%

0.00154

Низкий

6.3 Medium

CVSS3

7.8 High

CVSS3

Дефекты

CWE-427

Связанные уязвимости

GHSA-3xp7-g5q3-9922

CVSS3: 6.3

github

больше 2 лет назад

A heap-based overflow vulnerability in TA prior to version 5.7.9 allows a remote user to alter the page heap in the macmnsvc process memory block, resulting in the service becoming unavailable.

EPSS

Процентиль: 36%

0.00154

Низкий

6.3 Medium

CVSS3

7.8 High

CVSS3

Дефекты

CWE-427