VYPR
Medium severity5.4NVD Advisory· Published Dec 20, 2024· Updated Apr 15, 2026

CVE-2024-5955

CVE-2024-5955

Description

Cross-site scripting vulnerability in Trellix ePolicy Orchestrator prior to ePO 5.10 Service Pack 1 Update 3 allows a remote authenticated attacker to craft requests causing arbitrary content to be injected into the response when accessing the epolicy Orchestrator.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.