Lucene search

ProofpointCVELIST:CVE-2023-4802

HistorySep 13, 2023 - 3:15 p.m.

CVE-2023-4802 ITM Server Cross-site Scripting in UpdateInstalledSoftware Endpoint

2023-09-1315:15:06

CWE-79

Proofpoint

www.cve.org

cross-site scripting

itm server

updateinstalledsoftware

insider threat management

web console

admin

authenticated

administrator

browser

vulnerability

version 7.14.3.69

4.8 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

5.1 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

14.2%

JSON

A reflected cross-site scripting vulnerability in the UpdateInstalledSoftware endpoint of the Insider Threat Management (ITM) Server’s web console could be used by an authenticated administrator to run arbitrary javascript within another web console administrator’s browser. All versions prior to 7.14.3.69 are affected.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "modules": [
      "web console"
    ],
    "product": "ITM Server",
    "vendor": "Proofpoint",
    "versions": [
      {
        "changes": [
          {
            "at": "7.14.3.69",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "7.14.3",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  }
]

References

www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-007