CVE-2023-4802

CVSS V2 None CVSS V3 None
Description
A reflected cross-site scripting vulnerability in the UpdateInstalledSoftware endpoint of the Insider Threat Management (ITM) Server's web console could be used by an authenticated administrator to run arbitrary javascript within another web console administrator's browser. All versions prior to 7.14.3.69 are affected.
Overview
  • CVE ID
  • CVE-2023-4802
  • Assigner
  • Proofpoint
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2023-09-13T15:15:06.042Z
  • Last Modified Date
  • 2023-10-13T21:46:33.623Z
History
Created Old Value New Value Data Type Notes
2024-06-24 19:49:58 Added to TrackCVE