Source |
CVE Liste |
Identifiant |
2249017 |
Date de publication |
2021-01-26 20:15:12 (vue: 2021-01-26 22:05:57) |
Titre |
CVE-2021-22159 |
Texte |
Insider Threat Management Windows Agent Local Privilege Escalation Vulnerability The Proofpoint Insider Threat Management (formerly ObserveIT) Agent for Windows before 7.4.3, 7.5.4, 7.6.5, 7.7.5, 7.8.4, 7.9.3, 7.10.2, and 7.11.0.25 as well as versions 7.3 and earlier is missing authentication for a critical function, which allows a local authenticated Windows user to run arbitrary commands with the privileges of the Windows SYSTEM user. Agents for MacOS, Linux, and ITM Cloud are not affected. |
Envoyé |
Oui |
Condensat |
2021 22159 affected agent agents allows arbitrary are authenticated authentication before cloud commands critical cve earlier escalation formerly function insider itm linux local macos management missing not observeit privilege privileges proofpoint run system threat user versions vulnerability well which windows |
Tags |
Vulnerability
Threat
|
Stories |
|
Notes |
|
Move |
|