Insider Threat Management Server Security Vulnerabilities and Issues — Insider Threat Management Server CVE List

Lucene search

ProofpointInsider Threat Management Server

9 matches found

CVE•added 2021/10/13 6:15 p.m.•35 views

CVE-2021-40842

Proofpoint Insider Threat Management Server contains a SQL injection vulnerability in the Web Console. The vulnerability exists due to improper input validation on the database name parameter required in certain unauthenticated APIs. A malicious URL visited by anyone with network access to the serv...

9.8CVSS9.7AI score0.00639EPSS

CVE•added 2021/10/13 6:15 p.m.•34 views

CVE-2021-40843

Proofpoint Insider Threat Management Server contains an unsafe deserialization vulnerability in the Web Console. An attacker with write access to the local database could cause arbitrary code to execute with SYSTEM privileges on the underlying server when a Web Console user triggers retrieval of th...

7.3CVSS7.5AI score0.00031EPSS

CVE•added 2021/01/06 2:15 p.m.•33 views

CVE-2020-10655

The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before 7.9.1 contains a vulnerability in the ITM application server's WriteWindowMouse API. The vulnerability allows an anonymous remote attacker to execute arbitrary code with local administrator privileges. The vulnerabil...

9.8CVSS9.3AI score0.06601EPSS

CVE•added 2021/01/06 2:15 p.m.•33 views

CVE-2020-10658

The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before 7.9.1 contains a vulnerability in the ITM application server's WriteImage API. The vulnerability allows an anonymous remote attacker to execute arbitrary code with local administrator privileges. The vulnerability is...

9.8CVSS9.3AI score0.06601EPSS

CVE•added 2021/01/06 2:15 p.m.•30 views

CVE-2020-10657

The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before 7.9.1 contains a vulnerability in the ITM web console's ImportAlertRules feature. The vulnerability allows a remote attacker (with admin or config-admin privileges in the console) to execute arbitrary code with local...

7.2CVSS7.2AI score0.04699EPSS

CVE•added 2021/01/06 2:15 p.m.•25 views

CVE-2020-10656

The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before 7.9.1 contains a vulnerability in the ITM application server's WriteWindowMouseWithChunksV2 API. The vulnerability allows an anonymous remote attacker to execute arbitrary code with local administrator privileges. Th...

9.8CVSS9.3AI score0.06601EPSS

CVE•added 2023/06/27 3:15 p.m.•22 views

CVE-2023-35998

A missing authorization check in multiple SOAP endpoints of the Insider Threat Management Server enables an attacker on an adjacent network to read and write unauthorized objects. Successful exploitation requires an attacker to first obtain a valid agent authentication token. All versions before 7....

4.6CVSS4.7AI score0.00091EPSS

CVE•added 2023/06/27 3:15 p.m.•21 views

CVE-2023-36002

A missing authorization check in multiple URL validation endpoints of the Insider Threat Management Server enables an anonymous attacker on an adjacent network to smuggle content via DNS lookups. All versions before 7.14.3 are affected.

4.3CVSS4.5AI score0.00066EPSS

CVE•added 2023/06/27 3:15 p.m.•20 views

CVE-2023-36000

A missing authorization check in the MacOS agent configuration endpoint of the Insider Threat Management Server enables an anonymous attacker on an adjacent network to obtain sensitive information. Successful exploitation requires an attacker to first obtain a valid agent authentication token. All ...

6.5CVSS6.4AI score0.00086EPSS