Command Injection Vulnerability in Trellix TA for macOS
CVE-2023-0976
7.8HIGH
What is CVE-2023-0976?
A command injection vulnerability exists in Trellix TA for macOS versions prior to 5.7.9, allowing local users to place a malicious file into the /Library/Trellix/Agent/bin/ directory. This malicious file can be executed when the TA deployment feature is triggered from within the System Tree, potentially leading to unauthorized file actions or system compromise.
Affected Version(s)
Trellix Agent MacOS 5.7.8