📦

data_loss_prevention

Vendor: trellix

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 0.07% Exploit Prob.

Latest CVE CVE-2023-4814 Sep 14

Security Vulnerability Index

Page 1 / 1

7.1 CVSS

CVE-2023-4814

A Privilege escalation vulnerability exists in Trellix Windows DLP endpoint for windows which can be abused to delete any file/folder for which the user does not have permission to.

EPSS: 0.05%

Severity: HIGH

Sep 14, 2023

5.9 CVSS

CVE-2023-0400

The protection bypass vulnerability in DLP for Windows 11.9.x is addressed in version 11.10.0. This allowed a local user to bypass DLP controls when uploading sensitive data from a mapped drive into a web email client. Loading from a local driver was correctly prevented. Versions prior to 11.9 correctly detected and blocked the attempted upload of sensitive data.

EPSS: 0.10%

Severity: MEDIUM

Feb 02, 2023

Displaying 2 of 2 Total Entries

Total 1 Sections