Trellix Endpoint Security — known CVE vulnerabilities
Every CVE whose affected-product data names Trellix Endpoint Security, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2025-14963 — CVSS 7.8 (high): A vulnerability identified in the HX Agent driver file fekern.sys allowed a threat actor with local user access the ability to gain…
CVE-2022-4326 — CVSS 5.5 (medium): Improper preservation of permissions vulnerability in Trellix Endpoint Agent (xAgent) prior to V35.31.22 on Windows allows a local user…
CVE-2023-3665 — CVSS 5.5 (medium): A code injection vulnerability in Trellix ENS 10.7.0 April 2023 release and earlier, allowed a local user to disable the ENS AMSI component…