ITM Windows Agent Insecure Filesystem Permissions | Proofpoint UK

Platform
Products
Solutions
Partners
Resources
Company

Search

English (Europe, Middle East, Africa)

Platform

Products

Solutions

Partners

Resources

Company

Multi-layered, adaptive defences for threat detection, impersonation, and supplier risk.

Email Security

Impersonation Protection

More products

Transform your information protection with a human-centric, omni-channel approach.

Enterprise DLP

Adaptive Email DLP

Insider Threat Management

Intelligent Compliance

Mitigate Human Risk

Unlock full user risk visibility and drive behaviour change.

Security Awareness

Augment Your Capabilities

Managed Services

Product Packages

More Protect People Products

Account Take-Over and Identity Protection

Secure vulnerable identities, stop lateral movement and privilege escalation.

Adaptive Email Security

Stop more threats with a fully integrated layer of behavioural AI.

Secure Email Relay

Secure your application email and accelerate DMARC implementation

Solutions

See how we solve today's complex cyber threats and attacks.

Solutions by Industry

People-centric solutions for your organisation.

Authenticate Your Email

Protect your email deliverability with DMARC.

Combat Email and Cloud Threats

Protect your people from email and cloud threats with an intelligent and holistic approach.

Change User Behaviour

Help your employees identify, resist and report attacks before the damage is done.

Combat Data Loss and Insider Risk

Prevent data loss via negligent, compromised and malicious insiders.

Modernise Compliance and Archiving

Manage risk and data retention needs with a modern compliance and archiving solution.

Protect Cloud Apps

Keep your people and their cloud apps secure by eliminating threats and data loss.

Prevent Loss from Ransomware

Learn about this growing threat and stop attacks by securing ransomware's top vector: email.

Secure Microsoft 365

Implement the best security and compliance solution for Microsoft 365.

Solutions By Industry

People-centric solutions for your organisation.

State and Local Government

Protecting the public sector, and the public from cyber threats.

Higher Education

A higher level of security for higher education.

Financial Services

Eliminate threats, build trust and foster growth for your organisation.

Healthcare

Protect clinicians, patient data, and your intellectual property against advanced threats.

Mobile Operators

Make your messaging environment a secure environment.

Internet Service Providers

Cloudmark email protection.

Small and Medium Businesses

Big-time security for small business.

Partners

Deliver Proofpoint solutions to your customers.

Channel Partners

Archive Extraction Partners

Learn about Extraction Partners.

GSI and MSP Partners

Learn about our global consulting.

Technology and Alliance Partners

Learn about our relationships.

Social Media Protection Partners

Learn about the technology and....

Proofpoint Essentials Partner Programs

Small Business Solutions .

Become a Channel Partner

Resources

Find reports, webinars, blogs, events, podcasts and more.

Resource Library

Blog

Keep up with the latest news and happenings.

Webinars

Browse our webinar library to learn about the latest threats, trends and issues in cybersecurity.

Cybersecurity Academy

Earn your certification to become a Proofpoint Certified Guardian.

Podcasts

Learn about the human side of cybersecurity.

New Perimeters Magazine

Get the latest cybersecurity insights in your hands.

Threat Glossary

Learn about the latest security threats.

Events

Connect with us at events to learn how to protect your people and data from ever-evolving threats.

Customer Stories

Read how our customers solve their most pressing cybersecurity challenges.

Company

Proofpoint protects organisations' greatest assets and biggest risks: their people.

About Proofpoint

Why Proofpoint

Learn about our unique people-centric approach to protection.

Careers

Stand out and make a difference at one of the world's leading cybersecurity companies.

News Center

Read the latest press releases, news stories and media highlights about Proofpoint.

Privacy and Trust

Learn about how we handle data and make commitments to privacy and other regulations.

Environmental, Social, and Governance

Learn how we apply our principles to positively impact our community.

Support

Access the full range of Proofpoint support services.

Platform

Discover the Proofpoint human-centric platform.

Learn More

Proofpoint Nexus

Detection technologies to protect people and defend data.

Proofpoint Zen

Protect and engage users wherever they work.

Search Proofpoint

Try searching for

Email Security Phishing DLP Email Fraud

Select Product Login

Select Language

Security Advisories

ITM Windows Agent Insecure Filesystem Permissions

ITM Windows Agent Insecure Filesystem Permissions, CVE-2023-2818

Advisory ID: PFPT-SA-2023-0005

An insecure filesystem permission in the Insider Threat Management Agent for Windows enables local unprivileged users to disrupt event reporting. All versions prior to 7.14.3 are affected. Agents for MacOS and Linux and Cloud are unaffected.

Vulnerability Information

This vulnerability is identified by CVE-2023-2818.

This vulnerability has been assigned a CVSS score of 5.5 (Medium):

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Fixed Software

Proofpoint has released fixed software version 7.14.3.

The fixed software version is now available through the customer support portal.

URL

https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-005

Revision History

Version	Description	Section	Date
1.0	Initial release		June 27, 2023

Legal Disclaimer

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. PROOFPOINT RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.

A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for authorized subscribers to Proofpoint products and services.