VYPR
Unrated severityNVD Advisory· Published Nov 30, 2022· Updated Apr 23, 2025

CVE-2022-3859

CVE-2022-3859

Description

An uncontrolled search path vulnerability exists in Trellix Agent (TA) for Windows in versions prior to 5.7.8. This allows an attacker with admin access, which is required to place the DLL in the restricted Windows System folder, to elevate their privileges to System by placing a malicious DLL there.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.