CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-3340

XML External Entity (XXE) vulnerability in Trellix IPS Manager prior to 10.1 M8 allows a remote authenticated administrator to perform XXE attack in the administrator interface part of the interface, which allows a saved XML configuration file to be imported.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 30.7%

CVSS Severity

CVSS v3 Score 5.9

References

https://kcm.trellix.com/corporate/index?page=content&id=SB10388
https://kcm.trellix.com/corporate/index?page=content&id=SB10388

Products affected by CVE-2022-3340

Trellix » Intrusion Prevention System Manager » Version: Any

cpe:2.3:a:trellix:intrusion_prevention_system_manager:*
Trellix » Intrusion Prevention System Manager » Version: 10.1

cpe:2.3:a:trellix:intrusion_prevention_system_manager:10.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-3340

Products

Pricing

Contact Us