CVE-2025-8558_CVE-2025-8558

2.3 / 10

LOW

CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N

Description

Insider Threat Management (ITM) Server versions prior to 7.17.2 contain an authentication bypass vulnerability that allows unauthenticated users on an adjacent network to perform agent unregistration when the number of registered agents exceeds the licensed limit. Successful exploitation prevents the server from receiving new events from affected agents, resulting in a partial loss of integrity and availability with no impact to confidentiality.

Basic Information

ID CVE-2025-8558

Source Proofpoint

Published Nov 3, 2025 at 18:40

Modified Nov 3, 2025 at 19:03

Affected Product

Vendor Proofpoint

Product Insider Threat Management (ITM) Server

Affected Versions Proofpoint Insider Threat Management (ITM) Server 0

CWE Classification

CWE-306

References

www.proofpoint.com /us/security/security-advisories/pfpt-sa-2025-003

{
    "lastseen": "",
    "description": "Insider Threat Management (ITM) Server\u00a0versions prior to 7.17.2\u00a0contain an authentication bypass vulnerability that allows unauthenticated users on an adjacent network to perform agent unregistration when the number of registered agents exceeds the licensed limit. Successful exploitation prevents the server from receiving new events from affected agents, resulting in a partial loss of integrity and availability with no impact to confidentiality.",
    "published": "2025-11-03T18:40:03.946Z",
    "modified": "2025-11-03T19:03:11.645Z",
    "type": "cve",
    "title": "CVE-2025-8558",
    "source": "Proofpoint",
    "references": "https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2025-003",
    "id": "CVE-2025-8558",
    "bulletinFamily": "",
    "cwe": [
        "CWE-306"
    ],
    "cvelist": null,
    "sourceData": "Proofpoint Insider Threat Management (ITM) Server 0",
    "sourceHref": "",
    "cvss": {
        "score": 2.3,
        "severity": "LOW",
        "vector": "CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Insider Threat Management (ITM) Server",
    "version": "0",
    "vendor": "Proofpoint",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}