Lucene search
K

5 matches found

OSV
OSV
added 2023/06/27 3:15 p.m.5 views

CVE-2023-36002

A missing authorization check in multiple URL validation endpoints of the Insider Threat Management Server enables an anonymous attacker on an adjacent network to smuggle content via DNS lookups. All versions before 7.14.3 are affected...

4.3CVSS5.8AI score0.00254EPSS
Exploits0References2
NVD
NVD
added 2023/06/27 3:15 p.m.20 views

CVE-2023-36002

A missing authorization check in multiple URL validation endpoints of the Insider Threat Management Server enables an anonymous attacker on an adjacent network to smuggle content via DNS lookups. All versions before 7.14.3 are affected...

4.3CVSS4.6AI score0.00254EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/06/27 2:32 p.m.13 views

CVE-2023-36002 ITM Server Missing Authorization for URL validation

A missing authorization check in multiple URL validation endpoints of the Insider Threat Management Server enables an anonymous attacker on an adjacent network to smuggle content via DNS lookups. All versions before 7.14.3 are affected...

4.3CVSS6.8AI score0.00254EPSS
Exploits0References1
CVE
CVE
added 2023/06/27 2:32 p.m.32 views

CVE-2023-36002

CVE-2023-36002 affects Proofpoint Insider Threat Management Server prior to 7.14.3. A missing authorization check in multiple URL validation endpoints allows an anonymous attacker on an adjacent network to smuggle content via DNS lookups. Impact is limited to affected versions; mitigation is to u...

4.3CVSS4.5AI score0.00254EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/06/27 2:32 p.m.19 views

CVE-2023-36002 ITM Server Missing Authorization for URL validation

A missing authorization check in multiple URL validation endpoints of the Insider Threat Management Server enables an anonymous attacker on an adjacent network to smuggle content via DNS lookups. All versions before 7.14.3 are affected...

4.3CVSS4.9AI score0.00254EPSS
Exploits0References1
Rows per page
Query Builder