CVE-2024-7608 MEDIUM

CVE-2024-7608

Vendor Trellix
Product Trellix NX, EX, AX, FX, CMS and IVX
Weakness CWE-35
Published August 27, 2024
Last update August 28, 2024

CVSS base score

5.9/10
Attack vector Network
Attack complexity High
Privileges required Low
User interaction Required
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:H

What the vulnerability does

01Description

An authenticated user can access the restricted files from NX, EX, FX, AX, IVX and CMS using path traversal.

Key dates

02Disclosure timeline

August 27, 2024 CVE published
August 28, 2024 Record updated