The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before 7.9.1 contains a vulnerability in the ITM application server's WriteImage API. The vulnerability allows an anonymous remote attacker to execute arbitrary code with local administrator privileges. The vulnerability is caused by improper deserialization.
References
Link | Resource |
---|---|
https://www.proofpoint.com/us/blog | Product |
https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2020-0003 | Vendor Advisory |
https://www.proofpoint.com/us/blog | Product |
https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2020-0003 | Vendor Advisory |
Configurations
History
21 Nov 2024, 04:55
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.proofpoint.com/us/blog - Product | |
References | () https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2020-0003 - Vendor Advisory |
Information
Published : 2021-01-06 14:15
Updated : 2024-11-21 04:55
NVD link : CVE-2020-10658
Mitre link : CVE-2020-10658
CVE.ORG link : CVE-2020-10658
JSON object : View
Products Affected
proofpoint
- insider_threat_management_server
CWE
CWE-502
Deserialization of Untrusted Data