ITM MacOS Agent Improper Certificate Validation
CVE-2023-4801

7.5HIGH

Key Information:

Vendor: Proofpoint
Status: Insider Threat Management
Vendor: CVE Published:; 13 September 2023

What is CVE-2023-4801?

An improper certification validation vulnerability exists in the Insider Threat Management (ITM) Agent designed for MacOS. This flaw could potentially enable an unauthenticated attacker within the same network vicinity to execute a man-in-the-middle attack, thereby intercepting communications between the agent and the ITM server after the agent's registration. All versions earlier than 7.14.3.69 are vulnerable, while agents running on Windows, Linux, or Cloud environments are not impacted.

Affected Version(s)

Insider Threat Management MacOS 0 <= 7.14.3

References

https://www.proofpoint.com/us/security/security-advisorie...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 13, 2023
Vulnerability Reserved
Sep 6, 2023

Proofpoint

What is CVE-2023-4801?

Affected Version(s)

References

CVSS V3.1

Timeline