CVE-2023-2818

An insecure filesystem permission in the Insider Threat Management Agent for Windows enables local unprivileged users to disrupt agent monitoring. All versions prior to 7.14.3 are affected. Agents for MacOS and Linux and Cloud are unaffected.
Configurations

Configuration 1 (hide)

cpe:2.3:a:proofpoint:insider_threat_management:*:*:*:*:*:windows:*:*

History

06 Jul 2023, 15:31

Type Values Removed Values Added
CWE CWE-281
First Time Proofpoint insider Threat Management
Proofpoint
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.5
CPE cpe:2.3:a:proofpoint:insider_threat_management:*:*:*:*:*:windows:*:*
References (MISC) https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-005 - (MISC) https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-005 - Vendor Advisory

27 Jun 2023, 15:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-06-27 15:15

Updated : 2024-02-28 20:13


NVD link : CVE-2023-2818

Mitre link : CVE-2023-2818

CVE.ORG link : CVE-2023-2818


JSON object : View

Products Affected

proofpoint

  • insider_threat_management
CWE
CWE-281

Improper Preservation of Permissions