April 24, 2025
Summary
ISO is aware of a medium-severity vulnerability that affects the Trellix HX management console for our EDR agent. This vulnerability can only be exploited by manipulating a previously compromised endpoint agent to send a malformed event to the console. The patch was applied to the console, and no change is needed on the endpoints.
Impact
The vulnerability could have created a Denial of Service in the management console which would reduce our ability to detect tampering with the endpoint agent.
What is vulnerable
-
The Trellix HX management console running version 10.0.x prior to version 10.0.4 is vulnerable.
Additional Information
-
The management console has been updated and there should be no visible downtime.