CVE-2025-8558 LOW

CVE-2025-8558

Vendor Proofpoint
Product Insider Threat Management (ITM) Server
Weakness CWE-306 · Missing auth
Published November 3, 2025
Last update November 3, 2025

CVSS base score

2.3/10
Attack vector Adjacent
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Insider Threat Management (ITM) Server versions prior to 7.17.2 contain an authentication bypass vulnerability that allows unauthenticated users on an adjacent network to perform agent unregistration when the number of registered agents exceeds the licensed limit. Successful exploitation prevents the server from receiving new events from affected agents, resulting in a partial loss of integrity and availability with no impact to confidentiality.

Key dates

02Disclosure timeline

November 3, 2025 CVE published
November 3, 2025 Record updated