A vulnerability in Trellix Agent has been discovered and resolved.
Affected Software
• Versions prior to 5.8.1 (Linux and MacOS)
Remediated/Updated Versions
The vulnerability is remediated in these versions:
• 5.8.1
Impact
• [CVE-2024-0213] (CVSS: 8.2; Severity: High) CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow').
Recommendation
Verify that you have applied the latest updates. Impacted users should install the relevant updates or hotfixes. For full instructions and information, see Knowledge Base article SB10416, Security Bulletin - Trellix Agent (TA) for MacOS and TA Linux fixes one vulnerability (CVE-2024-0213)
Also included in these releases
For a full list of changes, see the Release Notes: