Cory Cline

**Name of the Vulnerable Software and Affected Versions** Proxmox VE versions 5.4 through 8.0 Proxmox Backup Server versions 1.1 through 3.0 Proxmox Mail Gateway versions 7.1 through 8.0 **Description** An issue in Proxmox products allows a remote authenticated attacker to escalate privileges via bypassing the two-factor authentication component. **Recommendations** For Proxmox VE versions 5.4 through 8.0, update to a version that includes a fix for this issue. For Proxmox Backup Server versions 1.1 through 3.0, update to a version that includes a fix for this issue. For Proxmox Mail Gateway versions 7.1 through 8.0, update to a version that includes a fix for this issue. As a temporary workaround, consider disabling the two-factor authentication bypass component until a patch is available.