CVE-2024-5955

Published: 2024-12-20T06:15Z

Last Modified: 2024-12-20T06:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Cross-site scripting vulnerability in Trellix ePolicy Orchestrator prior to ePO 5.10 Service Pack 1 Update 3 allows a remote authenticated attacker to craft requests causing arbitrary content to be injected into the response when accessing the epolicy Orchestrator. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt