CVE-2023-2818 MEDIUM

CVE-2023-2818: ITM Windows Agent Insecure Filesystem Permissions

Vendor Proofpoint
Product Insider Threat Management
Weakness CWE-281
Published June 27, 2023
Last update November 7, 2024

CVSS base score

5.5/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

An insecure filesystem permission in the Insider Threat Management Agent for Windows enables local unprivileged users to disrupt agent monitoring. All versions prior to 7.14.3 are affected. Agents for MacOS and Linux and Cloud are unaffected.

Key dates

02Disclosure timeline

June 27, 2023 CVE published
November 7, 2024 Record updated