VYPR

Central Management

by Fireeye

CVEs (4)

  • CVE-2023-6072Feb 13, 2024
    risk 0.00cvss epss 0.00

    A cross-site scripting vulnerability in Trellix Central Management (CM) prior to 9.1.3.97129 allows a remote authenticated attacker to craft CM dashboard internal requests causing arbitrary content to be injected into the response when accessing the CM dashboard.

  • CVE-2024-0315Jan 15, 2024
    risk 0.00cvss epss 0.00

    Remote file inclusion vulnerability in FireEye Central Management affecting version 9.1.1.956704. This vulnerability allows an attacker to upload a malicious PDF file to the system during the report creation process.

  • CVE-2024-0314Jan 15, 2024
    risk 0.00cvss epss 0.00

    XSS vulnerability in FireEye Central Management affecting version 9.1.1.956704, which could allow an attacker to modify special HTML elements in the application and cause a reflected XSS, leading to a session hijacking.

  • CVE-2023-40685Oct 29, 2023
    risk 0.00cvss epss 0.00

    Management Central as part of IBM i 7.2, 7.3, 7.4, and 7.5 Navigator contains a local privilege escalation vulnerability. A malicious actor with command line access to the operating system can exploit this vulnerability to elevate privileges to gain root access to the operating…