CVE-2025-5967

Published: Jul 1, 2025

Modified: Jul 1, 2025

PUBLISHED

Description

A stored cross-site scripting vulnerability in ENS HX 10.0.4 allows a malicious user to inject arbitrary HTML into the ENS HX Malware Scan Name field, resulting in the exposure of sensitive data.

Vendor	Product	Versions
Trellix	Endpoint Security HX	affected `10.0.4`

Weaknesses (CWE)

CWE-79

References

https://thrive.trellix.com/s/article/000014606

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-5967

Description

Affected Products

Weaknesses (CWE)

References