Critical severity9.8NVD Advisory· Published Nov 29, 2024· Updated Jun 17, 2026
CVE-2024-11482
CVE-2024-11482
Description
A vulnerability in ESM 11.6.10 allows unauthenticated access to the internal Snowservice API and enables remote code execution through command injection, executed as the root user.
Affected products
2- Trellix/Trellix Enterprise Security Manager (ESM)v5Range: 11.6.12
Patches
Vulnerability mechanics
References
2- hackerone.com/reports/2817658nvdExploitThird Party Advisory
- thrive.trellix.com/s/article/000014058nvdPermissions Required
News mentions
0No linked articles in our index yet.