GCVE - cpe:2.3:a:proofpoint:itm_server:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:proofpoint:itm_server:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Proofpoint (`a6e799ec-33c1-574b-ba22-45b33dd0559d`)
Product	Itm Server (`fa13d19e-cebc-58f2-9189-63a6c15d31b3`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-4828`	vulnerable	2026-06-08 06:16:14.677941	ITM Server Communications Hijack MEDIUM (6.4) An improper check for an exceptional condition in the Insider Threat Management (ITM) Server could be used by an attacker to change the server's configuration of any already-registered agent so that the agent sends all future communications to an attacker-chosen URL. This could result in disclosure of sensitive data events from the agent about the personally identifiable information (PII) and intellectual property it monitors, and all such data could be altered or deleted before reaching the ITM Server. An attacker must first successfully obtain valid agent credentials and agent hostname. All versions prior to 7.14.3.69 are affected. Published: 2023-09-13T15:16:13.903Z Updated: 2024-09-24T19:52:35.463Z Open on db.gcve.eu Reference links https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-008	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-4803`	vulnerable	2026-06-08 06:16:14.582235	ITM Server Cross-site Scripting in WriteWindowTitle Endpoint MEDIUM (4.8) A reflected cross-site scripting vulnerability in the WriteWindowTitle endpoint of the Insider Threat Management (ITM) Server's web console could be used by an authenticated administrator to run arbitrary javascript within another web console administrator's browser. All versions prior to 7.14.3.69 are affected. Published: 2023-09-13T15:15:40.928Z Updated: 2024-09-24T19:53:11.481Z Open on db.gcve.eu Reference links https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-007	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-4802`	vulnerable	2026-06-08 06:16:14.581530	ITM Server Cross-site Scripting in UpdateInstalledSoftware Endpoint MEDIUM (4.8) A reflected cross-site scripting vulnerability in the UpdateInstalledSoftware endpoint of the Insider Threat Management (ITM) Server's web console could be used by an authenticated administrator to run arbitrary javascript within another web console administrator's browser. All versions prior to 7.14.3.69 are affected. Published: 2023-09-13T15:15:06.042Z Updated: 2024-09-24T19:54:46.722Z Open on db.gcve.eu Reference links https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-007	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.