CVE-2024-5731

MEDIUM

IPS Manager - Info Disclosure

Title source: llm

Description

A vulnerability in the IPS Manager, Central Manager, and Local Manager communication workflow allows an attacker to control the destination of a request by manipulating the parameter, thereby leveraging sensitive information.

References (1)

[Various Sources] https://thrive.trellix.com/s/article/000013623

Scores

CVSS v3 6.8

EPSS 0.0026

EPSS Percentile 48.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-311

Status published

Products (1)

Trellix/Intrusion Prevention System (IPS) Manager Prior to 11.1.x

Published Jun 14, 2024

Tracked Since Feb 18, 2026