CVE-2023-2818

MEDIUM

Insider Threat Management Agent <7.14.3 - Info Disclosure

Title source: llm

Description

An insecure filesystem permission in the Insider Threat Management Agent for Windows enables local unprivileged users to disrupt agent monitoring. All versions prior to 7.14.3 are affected. Agents for MacOS and Linux and Cloud are unaffected.

References (1)

[Vendor Advisory] https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-005

Scores

CVSS v3 5.5

EPSS 0.0005

EPSS Percentile 14.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-281

Status published

Products (1)

proofpoint/insider_threat_management < 7.14.3

Published Jun 27, 2023

Tracked Since Feb 18, 2026