Trellix System Information Reporter — known CVE vulnerabilities
Every CVE whose affected-product data names Trellix System Information Reporter, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2025-3771 — CVSS 7.1 (high): A path or symbolic link manipulation vulnerability in SIR 1.0.3 and prior versions allows an authenticated non-admin local user to…
CVE-2025-3773 — CVSS 5.5 (medium): A sensitive information exposure vulnerability in System Information Reporter (SIR) 1.0.3 and prior allows an authenticated non-admin local…
CVE-2025-3722 — CVSS 4.4 (medium): A path traversal vulnerability in System Information Reporter (SIR) 1.0.3 and prior allowed an authenticated high privileged user to issue…