First published: Wed Jun 07 2023(Updated: )
A heap-based overflow vulnerability in TA prior to version 5.7.9 allows a remote user to alter the page heap in the macmnsvc process memory block, resulting in the service becoming unavailable.
Credit: trellixpsirt@trellix.com
Affected Software | Affected Version | How to fix |
---|---|---|
Trellix Agent | <5.7.9 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this heap-based overflow vulnerability is CVE-2023-1388.
The severity rating of CVE-2023-1388 is 8.1 (high).
The Trellix Agent software version prior to 5.7.9 is affected by CVE-2023-1388.
A remote user can exploit CVE-2023-1388 by altering the page heap in the macmnsvc process memory block.
The impact of the vulnerability CVE-2023-1388 is that it can cause the service to become unavailable.