Persistent Denial of Service Vulnerability in FireEye EDR Agent by Trellix
CVE-2025-0618

6.5MEDIUM

Key Information:

Vendor: Trellix
Status: Fireeye Edr Hx
Vendor: CVE Published:; 23 April 2025

What is CVE-2025-0618?

The FireEye EDR Agent is susceptible to a persistent denial of service vulnerability, enabling a malicious actor to send a crafted tamper protection event to the HX service. This action can trigger an exception that halts the processing of subsequent tamper protection events indefinitely, even across system reboots. This vulnerability underscores the critical need for robust monitoring and timely updates to maintain system integrity and operational continuity.

Affected Version(s)

FireEye EDR HX HX 10.0.0

References

https://thrive.trellix.com/s/article/000014456

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 23, 2025
Vulnerability Reserved
Jan 21, 2025