Unauthenticated Local Privilege Escalation Vulnerability in Trellix Endpoint Agent

Unauthenticated Local Privilege Escalation Vulnerability in Trellix Endpoint Agent

CVE-2022-4326 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

Improper preservation of permissions vulnerability in Trellix Endpoint Agent (xAgent) prior to V35.31.22 on Windows allows a local user with administrator privileges to bypass the product protection to uninstall the agent via incorrectly applied permissions in the removal protection functionality.

Learn more about our User Device Pen Test.