Unrated severityNVD Advisory· Published Feb 13, 2024· Updated Apr 24, 2025
CVE-2023-6072
CVE-2023-6072
Description
A cross-site scripting vulnerability in Trellix Central Management (CM) prior to 9.1.3.97129 allows a remote authenticated attacker to craft CM dashboard internal requests causing arbitrary content to be injected into the response when accessing the CM dashboard.
Affected products
2- Range: <9.1.3.97129
- Trellix/Trellix Central Management (CM)v5Range: Prior to 9.1.3.97129
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.