Medium severity5.4NVD Advisory· Published Dec 20, 2024· Updated Apr 15, 2026
CVE-2024-5955
CVE-2024-5955
Description
Cross-site scripting vulnerability in Trellix ePolicy Orchestrator prior to ePO 5.10 Service Pack 1 Update 3 allows a remote authenticated attacker to craft requests causing arbitrary content to be injected into the response when accessing the epolicy Orchestrator.
Affected products
1- Range: <5.10 Service Pack 1 Update 3
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.