CVE-2022-25294
First published: Mon Mar 07 2022(Updated: )
Proofpoint Insider Threat Management Agent for Windows relies on an inherently dangerous function that could enable an unprivileged local Windows user to run arbitrary code with SYSTEM privileges. All versions prior to 7.12.1 are affected. Agents for MacOS and Linux and Cloud are unaffected. Proofpoint has released fixed software version 7.12.1. The fixed software versions are available through the customer support portal.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Proofpoint Insider Threat Management Windows | <7.12.1 | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this security advisory?
The vulnerability ID for this security advisory is CVE-2022-25294.
What is the affected software?
The affected software is Proofpoint Insider Threat Management Agent for Windows versions prior to 7.12.1.
What is the severity rating of this vulnerability?
The severity rating of this vulnerability is 7.8 (high).
How can an unprivileged local Windows user exploit this vulnerability?
An unprivileged local Windows user can exploit this vulnerability by running arbitrary code with SYSTEM privileges.
Is Proofpoint Insider Threat Management Agent for MacOS and Linux affected by this vulnerability?
No, Proofpoint Insider Threat Management Agent for MacOS and Linux are unaffected by this vulnerability.
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/proofpoint
- canonical/proofpoint insider threat management windows
- vendor/microsoft
- canonical/microsoft windows