CVE-2023-3665 Information

Description

A code injection vulnerability in Trellix ENS 10.7.0 April 2023 release and earlier allowed a local user to disable the ENS AMSI component via environment variables leading to denial of service and or the execution of arbitrary code.

Reference

https://kcm.trellix.com/corporate/index?page=content&id=SB10405