CVE-2023-4801

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Sep 13, 2023

Updated: Sep 15, 2023

CWE ID 89

Summary

CVE-2023-4801 is a vulnerability affecting the Insider Threat Management (ITM) Agent for MacOS. This issue allows an anonymous actor on an adjacent network to perform man-in-the-middle attacks. The vulnerability arises due to an improper certification validation process. Agents running on versions prior to 7.14.3.69 are at risk. Notably, agents for Windows, Linux, and Cloud are not impacted. Organizations using the ITM Agent for MacOS must update to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tYovGB
https://www.cve.org/CVERecord?id=CVE-2023-4801
https://nvd.nist.gov/vuln/detail/CVE-2023-4801

Back to Vulnerability Database

CVE-2023-4801

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations