CVE-2021-40842

Name of the Vulnerable Software and Affected Versions Proofpoint Insider Threat Management Server versions prior to 7.11.2 Proofpoint Insider Threat Management Server version 7.12.0

Description The issue is related to a SQL injection vulnerability in the Web Console of the Proofpoint Insider Threat Management Server. This vulnerability exists due to improper input validation on the database name parameter required in certain unauthenticated APIs. A malicious URL visited by anyone with network access to the server could be used to blindly execute arbitrary SQL statements on the backend database.

Recommendations For versions prior to 7.11.2, update to version 7.11.2 or later to resolve the issue. For version 7.12.0, update to a version later than 7.12.0 to resolve the issue. As a temporary workaround, consider restricting access to the Web Console to minimize the risk of exploitation.