CVE-2022-4326

Summary

Improper preservation of permissions vulnerability in Trellix Endpoint Agent (xAgent) prior to V35.31.22 on Windows allows a local user with administrator privileges to bypass the product protection to uninstall the agent via incorrectly applied permissions in the removal protection functionality.

Affected Software

VendorProductVersion RangeStatus
TrellixxAgent0 < V35.31.22affected

Weaknesses

  • CWE-281: CWE-281 Improper Preservation of Permissions

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References