CVE-2024-5956

Summary

This vulnerability allows unauthenticated remote attackers to bypass authentication and gain partial data access to the vulnerable Trellix IPS Manager with garbage data in response mostly

Affected Software

VendorProductVersion RangeStatus
TrellixIntrusion Prevention System (IPS) Manager11.1.7.97affected

Weaknesses

  • CWE-305: CWE-305: Authentication Bypass by Primary Weakness

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References