VYPR

ENS HX

by Trellix

CVEs (2)

  • CVE-2023-3665MedOct 4, 2023
    risk 0.36cvss 5.5epss 0.00

    A code injection vulnerability in Trellix ENS 10.7.0 April 2023 release and earlier, allowed a local user to disable the ENS AMSI component via environment variables, leading to denial of service and or the execution of arbitrary code.

  • CVE-2025-5967MedJul 1, 2025
    risk 0.34cvss epss 0.00

    A stored cross-site scripting vulnerability in ENS HX 10.0.4 allows a malicious user to inject arbitrary HTML into the ENS HX Malware Scan Name field, resulting in the exposure of sensitive data.