VYPR

Trellix Application And Change Control (tacc)

by Trellix

CVEs (2)

  • CVE-2023-5607HigNov 27, 2023
    risk 0.55cvss 8.4epss 0.01

    An improper limitation of a path name to a restricted directory (path traversal) vulnerability in the TACC ePO extension, for on-premises ePO servers, prior to version 8.4.0 could lead to an authorised administrator attacker executing arbitrary code through uploading a…

  • CVE-2023-0221MedJan 13, 2023
    risk 0.29cvss 4.4epss 0.00

    Product security bypass vulnerability in ACC prior to version 8.3.4 allows a locally logged-in attacker with administrator privileges to bypass the execution controls provided by ACC using the utilman program.