CVE-2025-7958

Vulnerability Description

A Code Injection vulnerability existed in Trellix Network Security CM and NX. A locally authenticated admin user can execute arbitrary code using the web interface and Alert artifact details.

Related Weaknesses (CWE)

CWE-94

References

https://support.trellix.com/s/article/000015433

FAQ

What is CVE-2025-7958?

CVE-2025-7958 is a documented vulnerability. A Code Injection vulnerability existed in Trellix Network Security CM and NX. A locally authenticated admin user can execute arbitrary code using the web interface and Alert artifact details.

How severe is CVE-2025-7958?

CVSS scoring is not yet available for CVE-2025-7958. Check NVD for updates.

Is there a patch for CVE-2025-7958?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.