CNNVD-202511-056 Information

CNNVD ID

CNNVD-202511-056

Related CVE

CVE-2025-8558

• CNNVD Published: 2025-11-03

Description (Chinese)

Proofpoint Insider Threat Management Server是美国Proofpoint公司的一款应用于防止企业内部人员恶意操作的服务端应用。 Proofpoint Insider Threat Management Server 7.17.2之前版本存在安全漏洞，该漏洞源于相邻网络上未经验证的用户可在注册代理数量超过许可限制时执行代理注销操作，可能导致部分完整性和可用性丧失。

Description (English)

Proofpoint Industry Management Server is a service-end application of Proofpoint, a United States company, that is designed to prevent malicious operations by persons within the enterprise. Prior to version 7.17.2 of Proofpoint Insider Great Management Server, there was a security loophole, which arose from the fact that uncertified users of a neighbouring network could perform proxy write-off operations when the number of registered agents exceeded the permit limit, which could result in a partial loss of integrity and availability.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Proofpoint

Published

2025-11-03

Last Modified

2026-02-24

References

https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2025-003 https://access.redhat.com/security/cve/cve-2025-8558