CVE-2021-22158
HIGHProofpoint Insider Threat Management < 7.9.3 - Authenticated XML External Entity Injection
Title source: llmDescription
The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) is vulnerable to XML external entity (XXE) injection in the Web Console. The vulnerability requires admin user privileges and knowledge of the XML file's encryption key to successfully exploit. All versions before 7.11 are affected.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2021-0003
Scores
CVSS v3
7.2
EPSS
0.0062
EPSS Percentile
45.0%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-611
Status
published
Products (1)
proofpoint/insider_threat_management
7.9.0 - 7.9.3
Published
Apr 06, 2021
Tracked Since
Feb 18, 2026