Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): trellix dlp
- Search Type: Search All
- CPE Name Search: false
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2023-0400 |
The protection bypass vulnerability in DLP for Windows 11.9.x is addressed in version 11.10.0. This allowed a local user to bypass DLP controls when uploading sensitive data from a mapped drive into a web email client. Loading from a local driver was correctly prevented. Versions prior to 11.9 correctly detected and blocked the attempted upload of sensitive data. Published: February 02, 2023; 4:15:08 AM -0500 |
V3.1: 8.2 HIGH V2.0:(not available) |
CVE-2022-2330 |
Improper Restriction of XML External Entity Reference vulnerability in DLP Endpoint for Windows prior to 11.9.100 allows a remote attacker to cause the DLP Agent to access a local service that the attacker wouldn't usually have access to via a carefully constructed XML file, which the DLP Agent doesn't parse correctly. Published: August 30, 2022; 4:15:07 AM -0400 |
V3.1: 6.5 MEDIUM V2.0:(not available) |