Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A malicious third party could invoke a persistent denial of service vulnerability in FireEye EDR agent by sending a specially-crafted tamper protection event to the HX service to trigger an exception. This exception will prevent any further tamper protection events from being processed, even after a reboot of HX.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
对生成代码的控制不恰当(代码注入)
Vulnerability Title
FireEye EDR 代码注入漏洞
Vulnerability Description
FireEye EDR是美国火眼(FireEye)公司的一款终端检测与响应解决方案,主要用于帮助企业监控、检测和响应端点设备上的安全事件。 FireEye EDR存在代码注入漏洞,该漏洞源于特制篡改保护事件可能触发异常,导致持续拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A