Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
proofpoint enterprise protection vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-0090
The webservices in Proofpoint Enterprise Protection (PPS/POD) contain a vulnerability that allows for an anonymous user to execute remote code through 'eval injection'. Exploitation requires network access to the webservices API, but such access is a non-standard config...
Proofpoint Enterprise Protection 8.20.0
Proofpoint Enterprise Protection 8.18.6
Proofpoint Enterprise Protection
9.6
CVSSv3
CVE-2022-46332
The Admin Smart Search feature in Proofpoint Enterprise Protection (PPS/PoD) contains a stored cross-site scripting vulnerability that enables an anonymous email sender to gain admin privileges within the user interface. This affects all versions 8.19.0 and below.
Proofpoint Enterprise Protection
8.8
CVSSv3
CVE-2023-0089
The webutils in Proofpoint Enterprise Protection (PPS/POD) contain a vulnerability that allows an authenticated user to execute remote code through 'eval injection'. This affects all versions 8.20.0 and below.
Proofpoint Enterprise Protection 8.20.0
Proofpoint Enterprise Protection 8.18.6
Proofpoint Enterprise Protection
8.8
CVSSv3
CVE-2019-19680
A file-extension filtering vulnerability in Proofpoint Enterprise Protection (PPS / PoD), in the unpatched versions of PPS up to and including 8.9.22 and 8.14.2 respectively, allows malicious users to bypass protection mechanisms (related to extensions, MIME types, virus detectio...
Proofpoint Enterprise Protection
7.8
CVSSv3
CVE-2022-46334
Proofpoint Enterprise Protection (PPS/PoD) contains a vulnerability which allows the pps user to escalate to root privileges due to unnecessary permissions. This affects all versions 8.19.0 and below.
Proofpoint Enterprise Protection
7.5
CVSSv3
CVE-2021-39304
Proofpoint Enterprise Protection prior to 8.12.0-2108090000 allows security control bypass.
Proofpoint Enterprise Protection
7.2
CVSSv3
CVE-2022-46333
The admin user interface in Proofpoint Enterprise Protection (PPS/PoD) contains a command injection vulnerability that enables an admin to execute commands beyond their allowed scope. This affects all versions 8.19.0 and below.
Proofpoint Enterprise Protection
6.3
CVSSv3
CVE-2020-14009
Proofpoint Enterprise Protection (PPS/PoD) prior to 8.16.4 contains a vulnerability that could allow an malicious user to deliver an email message with a malicious attachment that bypasses scanning and file-blocking rules. The vulnerability exists because messages with certain cr...
Proofpoint Enterprise Protection
6.1
CVSSv3
CVE-2023-5771
Proofpoint Enterprise Protection contains a stored XSS vulnerability in the AdminUI. An unauthenticated attacker can send a specially crafted email with HTML in the subject which triggers XSS when viewing quarantined messages. This issue affects Proofpoint Enterprise Protection: ...
Proofpoint Enterprise Protection 8.20.0
Proofpoint Enterprise Protection 8.18.6
Proofpoint Enterprise Protection
5.4
CVSSv3
CVE-2023-5770
Proofpoint Enterprise Protection contains a vulnerability in the email delivery agent that allows an unauthenticated malicious user to inject improperly encoded HTML into the email body of a message through the email subject. The vulnerability is caused by inappropriate encoding ...
Proofpoint Enterprise Protection 8.20.0
Proofpoint Enterprise Protection 8.18.6
Proofpoint Enterprise Protection 8.20.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »