VYPR

TA

by Trellix

CVEs (3)

  • CVE-2024-0213Jan 9, 2024
    risk 0.00cvss epss 0.00

    A buffer overflow vulnerability in TA for Linux and TA for MacOS prior to 5.8.1 allows a local user to gain elevated permissions, or cause a Denial of Service (DoS), through exploiting a memory corruption issue in the TA service, which runs as root. This may also result in the…

  • CVE-2023-0976Jun 7, 2023
    risk 0.00cvss epss 0.01

    A command Injection Vulnerability in TA for mac-OS prior to version 5.7.9 allows local users to place an arbitrary file into the /Library/Trellix/Agent/bin/ folder. The malicious file is executed by running the TA deployment feature located in the System Tree.

  • CVE-2023-1388Jun 7, 2023
    risk 0.00cvss epss 0.01

    A heap-based overflow vulnerability in TA prior to version 5.7.9 allows a remote user to alter the page heap in the macmnsvc process memory block, resulting in the service becoming unavailable.