CVE-2021-27900

More information about this CVE will likely be available in a few days.

Description

The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) is missing an authorization check on several pages in the Web Console. This enables a view-only user to change any configuration setting and delete any registered agents. All versions before 7.11.1 are affected.

Related CPE's

Could not find any relations

References

https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2021-0005

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics