CVE-2024-7608

Summary

An authenticated user can access the restricted files from NX, EX, FX, AX, IVX and CMS using path traversal.

Affected Software

VendorProductVersion RangeStatus
TrellixTrellix NX, EX, AX, FX, CMS and IVXTrellix NX, EX, AX, FX, CMS 10.0.1 and older, for Trellix IVX 10.02. and olderaffected

Weaknesses

  • CWE-35: CWE-35: Path Traversal: '…/…//'

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References