CVE-2021-40842

Proofpoint Insider Threat Management Server contains a SQL injection vulnerability in the Web Console. The vulnerability exists due to improper input validation on the database name parameter required in certain unauthenticated APIs. A malicious URL visited by anyone with network access to the server could be used to blindly execute arbitrary SQL statements on the backend database. Version 7.12.0 and all versions prior to 7.11.2 are affected.

Published: Oct 13, 2021
Updated: Apr 14, 2023
CVE: CVE-2021-40842
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-89

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
proofpoint / insider_threat_management_server	7.12.0	7.12.0.x
proofpoint / insider_threat_management_server	-	7.11.2

https://www.proofpoint.com/us/security/security-advisories
https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2021-0008

Vulnerability Database

289,871

CVE-2021-40842