Uncontrolled Search Path Vulnerability in Trellix Agent for Windows
CVE-2022-3859

6.7MEDIUM

Key Information:

Vendor: Trellix
Status: Trellix Agent
Vendor: CVE Published:; 30 November 2022

What is CVE-2022-3859?

An uncontrolled search path vulnerability is present in Trellix Agent for Windows versions before 5.7.8. This flaw allows an attacker, granted admin access, to place a malicious DLL in a restricted System folder. Doing so can lead to privilege escalation, granting the attacker System-level permissions which can potentially compromise the entire system security.

Affected Version(s)

Trellix Agent Windows 5.x <= 5.7.8

References

https://kcm.trellix.com/corporate/index?page=content&id=S...

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 30, 2022
Vulnerability Reserved
Nov 4, 2022