CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2024-3676
https://notcve.org/view.php?id=CVE-2024-3676
14 May 2024 — The Proofpoint Encryption endpoint of Proofpoint Enterprise Protection contains an Improper Input Validation vulnerability that allows an unauthenticated remote attacker with a specially crafted HTTP request to create additional Encryption user accounts under the attacker's control. These accounts are able to send spoofed email to any users within the domains configured by the Administrator. El endpoint de Proofpoint Encryption de Proofpoint Enterprise Protection contiene una vulnerabilidad de validación de... • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2024-0002 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2024-0862
https://notcve.org/view.php?id=CVE-2024-0862
14 May 2024 — The Proofpoint Encryption endpoint of Proofpoint Enterprise Protection contains a Server-Side Request Forgery vulnerability that allows an authenticated user to relay HTTP requests from the Protection server to otherwise private network addresses. El endpoint de Proofpoint Encryption de Proofpoint Enterprise Protection contiene una vulnerabilidad de Server Side Request Forgery que permite a un usuario autenticado transmitir solicitudes HTTP desde el servidor de Protection a direcciones de red que de otro mo... • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2024-0001 • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 6.4EPSS: 0%CPEs: 3EXPL: 0CVE-2023-5770 – HTML injection in email body through email subject
https://notcve.org/view.php?id=CVE-2023-5770
09 Jan 2024 — Proofpoint Enterprise Protection contains a vulnerability in the email delivery agent that allows an unauthenticated attacker to inject improperly encoded HTML into the email body of a message through the email subject. The vulnerability is caused by inappropriate encoding when rewriting the email before delivery.This issue affects Proofpoint Enterprise Protection: from 8.20.2 before patch 4809, from 8.20.0 before patch 4805, from 8.18.6 before patch 4804 and all other prior versions. Proofpoint Enterprise ... • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-0009 • CWE-838: Inappropriate Encoding for Output Context •
CVSS: 6.4EPSS: 0%CPEs: 3EXPL: 0CVE-2023-5771 – HTML injection in AdminUI through email subject
https://notcve.org/view.php?id=CVE-2023-5771
06 Nov 2023 — Proofpoint Enterprise Protection contains a stored XSS vulnerability in the AdminUI. An unauthenticated attacker can send a specially crafted email with HTML in the subject which triggers XSS when viewing quarantined messages. This issue affects Proofpoint Enterprise Protection: from 8.20.0 before patch 4796, from 8.18.6 before patch 4795 and all other prior versions. Proofpoint Enterprise Protection contiene una vulnerabilidad XSS almacenada en AdminUI. Un atacante no autenticado puede enviar un correo ele... • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-0010 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-4828 – ITM Server Communications Hijack
https://notcve.org/view.php?id=CVE-2023-4828
13 Sep 2023 — An improper check for an exceptional condition in the Insider Threat Management (ITM) Server could be used by an attacker to change the server's configuration of any already-registered agent so that the agent sends all future communications to an attacker-chosen URL. This could result in disclosure of sensitive data events from the agent about the personally identifiable information (PII) and intellectual property it monitors, and all such data could be altered or deleted before reaching the ITM Server. An ... • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-0008 • CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-4803 – ITM Server Cross-site Scripting in WriteWindowTitle Endpoint
https://notcve.org/view.php?id=CVE-2023-4803
13 Sep 2023 — A reflected cross-site scripting vulnerability in the WriteWindowTitle endpoint of the Insider Threat Management (ITM) Server's web console could be used by an authenticated administrator to run arbitrary javascript within another web console administrator's browser. All versions prior to 7.14.3.69 are affected. Un administrador autenticado podría utilizar una vulnerabilidad de Cross-Site Scripting (XSS) Reflejada en el endpoint WriteWindowTitle de la consola web del servidor Insider Threat Management (ITM)... • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-0007 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-4802 – ITM Server Cross-site Scripting in UpdateInstalledSoftware Endpoint
https://notcve.org/view.php?id=CVE-2023-4802
13 Sep 2023 — A reflected cross-site scripting vulnerability in the UpdateInstalledSoftware endpoint of the Insider Threat Management (ITM) Server's web console could be used by an authenticated administrator to run arbitrary javascript within another web console administrator's browser. All versions prior to 7.14.3.69 are affected. Un administrador autenticado podría utilizar una vulnerabilidad de Cross-Site Scripting (XSS) Reflejada en el endpoint UpdateInstalledSoftware de la consola web del servidor Insider Threat Ma... • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-0007 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-4801 – ITM MacOS Agent Improper Certificate Validation
https://notcve.org/view.php?id=CVE-2023-4801
13 Sep 2023 — An improper certification validation vulnerability in the Insider Threat Management (ITM) Agent for MacOS could be used by an anonymous actor on an adjacent network to establish a man-in-the-middle position between the agent and the ITM server after the agent has registered. All versions prior to 7.14.3.69 are affected. Agents for Windows, Linux, and Cloud are unaffected. Un actor anónimo en una red adyacente podría utilizar una vulnerabilidad de validación de certificación inadecuada en el agente Insider T... • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-0006 • CWE-295: Improper Certificate Validation •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-36002 – ITM Server Missing Authorization for URL validation
https://notcve.org/view.php?id=CVE-2023-36002
27 Jun 2023 — A missing authorization check in multiple URL validation endpoints of the Insider Threat Management Server enables an anonymous attacker on an adjacent network to smuggle content via DNS lookups. All versions before 7.14.3 are affected. • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-0004 • CWE-862: Missing Authorization •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2023-36000 – ITM Server Missing Authorization for Agent Config
https://notcve.org/view.php?id=CVE-2023-36000
27 Jun 2023 — A missing authorization check in the MacOS agent configuration endpoint of the Insider Threat Management Server enables an anonymous attacker on an adjacent network to obtain sensitive information. Successful exploitation requires an attacker to first obtain a valid agent authentication token. All versions before 7.14.3 are affected. • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-0004 • CWE-862: Missing Authorization •