RCE in Trellix Network Security Nx, Ex, Fx, Ax, And Cms
CVE-2025-7958
A Code Injection vulnerability existed in Trellix Network Security CM and NX. A locally authenticated admin user can execute arbitrary code using the web interface and Alert artifact details.
Vulnerability class: RCE (Remote Code Execution)
Affected products
- Trellix Network Security Nx, Ex, Fx, Ax, And Cms — versions 10.0.4