CVE-2023-3438

MEDIUM

Trellix Move < 4.10.0 - Privilege Escalation

Title source: rule

Description

An unquoted Windows search path vulnerability existed in the install the MOVE 4.10.x and earlier Windows install service (mvagtsce.exe). The misconfiguration allowed an unauthorized local user to insert arbitrary code into the unquoted service path to obtain privilege escalation and stop antimalware services.

References (1)

[Patch, Vendor Advisory] https://kcm.trellix.com/corporate/index?page=content&id=SB10404

Scores

CVSS v3 4.4

EPSS 0.0004

EPSS Percentile 10.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-428

Status published

Products (1)

trellix/move < 4.10.0

Published Jul 03, 2023

Tracked Since Feb 18, 2026