CVE-2023-36000: ITM Server Missing Authorization for Agent Config
First published: Tue Jun 27 2023(Updated: )
A missing authorization check in the MacOS agent configuration endpoint of the Insider Threat Management Server enables an anonymous attacker on an adjacent network to obtain sensitive information. Successful exploitation requires an attacker to first obtain a valid agent authentication token. All versions before 7.14.3 are affected.
Credit: security@proofpoint.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Proofpoint | <7.14.3 | |
| macOS |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2023-36000.
What is the severity of CVE-2023-36000?
The severity of CVE-2023-36000 is medium (6.5).
Which software is affected by CVE-2023-36000?
Proofpoint Insider Threat Management Server version up to 7.14.3 is affected by CVE-2023-36000.
What is the vulnerability description of CVE-2023-36000?
CVE-2023-36000 is a vulnerability in the MacOS agent configuration endpoint of the Insider Threat Management Server that allows an anonymous attacker on an adjacent network to obtain sensitive information.
How can CVE-2023-36000 be exploited?
Successful exploitation of CVE-2023-36000 requires an attacker to first obtain a valid agent authentication token.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/description
- agent/author
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/proofpoint
- canonical/proofpoint
- vendor/apple
- canonical/macos