CVE-2023-6071 | Trellix Enterprise Security Manager up to 11.6.8 New Data Source command injection (SB10413)

Posted by Angelo Barbosa | Nov 30, 2023 | CVE

A vulnerability was found in Trellix Enterprise Security Manager up to 11.6.8. It has been classified as critical. Affected is an unknown function of the component New Data Source Handler. The manipulation leads to command injection.

This vulnerability is traded as CVE-2023-6071. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-6071 | Trellix Enterprise Security Manager up to 11.6.8 New Data Source command injection (SB10413)

Related Posts

CVE-2023-51946 | actidata actiNAS-SL-2U-8 3.2.03-SP1 nasSvr.php cross site scripting

CVE-2024-28136 | Phoenix Contact CHARX SEC-3150 up to 1.5.1 OCPP Remote Service command injection (VDE-2024-019)

CVE-2024-34913 | r-pan-scaffolding up to 5.0 PDF File unrestricted upload

CVE-2024-35526 | Daemon FarCry Core framework up to 7.2.13 /facade information disclosure