Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Trellix — Vulnerabilities & Security Advisories 50

Browse all 50 CVE security advisories affecting Trellix. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Trellix operates as a cybersecurity firm providing endpoint detection, response, and threat intelligence solutions primarily for enterprise environments. With fifty recorded Common Vulnerabilities and Exposures (CVEs), the platform has historically been susceptible to remote code execution, cross-site scripting, and privilege escalation flaws. These vulnerabilities often stem from complex integration layers within its endpoint agents and management consoles, allowing attackers to bypass security controls or gain unauthorized administrative access. Notable incidents include critical flaws in its ePO server components, which exposed sensitive configuration data and enabled lateral movement within compromised networks. The company has consistently issued patches to address these weaknesses, yet the high volume of CVEs highlights ongoing challenges in securing its extensive software ecosystem. This track record underscores the importance of rigorous patch management and continuous monitoring for organizations relying on Trellix’s comprehensive security infrastructure.

Top products by Trellix: Trellix Agent Intrusion Prevention System (IPS) Manager ePolicy Orchestrator System Information Reporter Trellix Enterprise Security Manager (ESM) Trellix Agent (TA) DLP Extension Enterprise Security Manager Trellix ePolicy Orchestrator (ePO) Trellix Central Management (CM) Endpoint HX Agent (xAgent) Trellix Endpoint Security (HX) Agent Endpoint Security HX DXL Broker FireEye EDR HX Trellix HX Console DLP Endpoint for Windows ePO Onprem Sp1 Update4 Trellix NX, EX, AX, FX, CMS and IVX Trellix EDR UI (XConsole) Data Loss Prevention (DLP) Trellix Endpoint Security (ENS) Web Control Anti-Malware Engine ESM Trellix IPS Manager Trellix Application and Change Control (TACC) GetSusp xAgent Trellix EPO Trellix Move
CVE IDTitleCVSSSeverityPublished
CVE-2023-6119 Trellix GetSusp 安全漏洞 — GetSuspCWE-269 6.5 Medium2023-11-16
CVE-2023-3946 Trellix ePolicy Orchestrator 跨站脚本漏洞 — Trellix EPOCWE-79 5.4 Medium2023-07-26
CVE-2023-3314 Trellix Enterprise Security Manager 操作系统命令注入漏洞 — Enterprise Security ManagerCWE-78 8.1 High2023-07-03
CVE-2023-3313 Trellix Enterprise Security Manager 操作系统命令注入漏洞 — Enterprise Security ManagerCWE-78 7.8 High2023-07-03
CVE-2023-3438 Trellix MOVE 代码问题漏洞 — Trellix MoveCWE-428 4.4 Medium2023-07-03
CVE-2023-0976 Trellix Agent 代码问题漏洞 — Trellix AgentCWE-427 6.3 Medium2023-06-07
CVE-2023-1388 Trellix Agent 缓冲区错误漏洞 — Trellix Agent 6.3 Medium2023-06-07
CVE-2023-0977 Trellix Agent 缓冲区错误漏洞 — Trellix AgentCWE-120 6.7 Medium2023-04-03
CVE-2023-0975 Trellix Agent 安全漏洞 — Trellix AgentCWE-281 8.2 High2023-04-03
CVE-2023-0978 Trellix Intelligent Sandbox 命令注入漏洞 — Trellix Intelligent SandboxCWE-77 6.4 Medium2023-03-13
CVE-2023-0400 Trellix Data Loss Prevention 代码问题漏洞 — Data Loss Prevention (DLP)CWE-670 5.9 Medium2023-02-01
CVE-2023-0221 Trellix Application and Change Control 安全漏洞 — Application and Change ControlCWE-269 4.4 Medium2023-01-13
CVE-2022-4326 Trellix xAgent permission bypass vulnerability — xAgentCWE-281 5.5 Medium2022-12-16
CVE-2022-3859 Trellix Agent 代码问题漏洞 — Trellix Agent 6.7 Medium2022-11-30
CVE-2022-2188 DXL Broker privilege escalation vulnerability — DXL Broker 6.5 Medium2022-11-07
CVE-2022-3340 Trellix IPS Manager vulnerable to XXE — Trellix IPS ManagerCWE-611 5.9 Medium2022-11-04
CVE-2022-3339 Reflected XSS in Trellix ePO server — Trellix ePolicy Orchestrator (ePO)CWE-79 5.4 Medium2022-10-18
CVE-2022-3338 XXE in Trellix ePO server — Trellix ePolicy Orchestrator (ePO)CWE-611 5.4 Medium2022-10-18
CVE-2022-2330 XXE vulnerability in DLP Endpoint for Windows — DLP Endpoint for WindowsCWE-611 6.5 Medium2022-08-30
CVE-2022-2313 DLL high jacking in Trellix Agent — Trellix Agent (TA) 8.2 High2022-07-27

This page lists every published CVE security advisory associated with Trellix. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.