CVE-2022-3859

An uncontrolled search path vulnerability exists in Trellix Agent (TA) for Windows in versions prior to 5.7.8. This allows an attacker with admin access, which is required to place the DLL in the restricted Windows System folder, to elevate their privileges to System by placing a malicious DLL there.
References
Configurations

Configuration 1

cpe:2.3:a:trellix:agent:*:*:*:*:windows:*:*:*

Information

Published : 2022-11-30 09:15

Updated : 2022-12-02 01:53


NVD link : CVE-2022-3859

Mitre link : CVE-2022-3859

Products Affected
No products.
CWE