CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2022-25294
https://notcve.org/view.php?id=CVE-2022-25294
07 Mar 2022 — Proofpoint Insider Threat Management Agent for Windows relies on an inherently dangerous function that could enable an unprivileged local Windows user to run arbitrary code with SYSTEM privileges. All versions prior to 7.12.1 are affected. Agents for MacOS and Linux and Cloud are unaffected. Proofpoint has released fixed software version 7.12.1. The fixed software versions are available through the customer support portal. • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2022-0001 •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-40842
https://notcve.org/view.php?id=CVE-2021-40842
13 Oct 2021 — Proofpoint Insider Threat Management Server contains a SQL injection vulnerability in the Web Console. The vulnerability exists due to improper input validation on the database name parameter required in certain unauthenticated APIs. A malicious URL visited by anyone with network access to the server could be used to blindly execute arbitrary SQL statements on the backend database. Version 7.12.0 and all versions prior to 7.11.2 are affected. Proofpoint Insider Threat Management Server contiene una vulnerab... • https://www.proofpoint.com/us/security/security-advisories • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.3EPSS: 0%CPEs: 1EXPL: 0CVE-2021-40843
https://notcve.org/view.php?id=CVE-2021-40843
13 Oct 2021 — Proofpoint Insider Threat Management Server contains an unsafe deserialization vulnerability in the Web Console. An attacker with write access to the local database could cause arbitrary code to execute with SYSTEM privileges on the underlying server when a Web Console user triggers retrieval of that data. When chained with a SQL injection vulnerability, the vulnerability could be exploited remotely if Web Console users click a series of maliciously crafted URLs. All versions prior to 7.11.2 are affected. P... • https://www.proofpoint.com/us/security/security-advisories • CWE-502: Deserialization of Untrusted Data •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-39304
https://notcve.org/view.php?id=CVE-2021-39304
13 Oct 2021 — Proofpoint Enterprise Protection before 8.12.0-2108090000 allows security control bypass. Proofpoint Enterprise Protection versiones anteriores a 8.12.0-2108090000 permite una omisión del control de seguridad • https://www.proofpoint.com/us/blog •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-34814
https://notcve.org/view.php?id=CVE-2021-34814
13 Oct 2021 — Proofpoint Spam Engine before 8.12.0-2106240000 has a Security Control Bypass. Proofpoint Spam Engine versiones anteriores a 8.12.0-2106240000 presenta una Omisión de Control de Seguridad • https://www.proofpoint.com/us/security/security-advisories •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-14009
https://notcve.org/view.php?id=CVE-2020-14009
07 May 2021 — Proofpoint Enterprise Protection (PPS/PoD) before 8.16.4 contains a vulnerability that could allow an attacker to deliver an email message with a malicious attachment that bypasses scanning and file-blocking rules. The vulnerability exists because messages with certain crafted and malformed multipart structures are not properly handled. Proofpoint Enterprise Protection (PPS/PoD) versiones anteriores a 8.16.4, contiene una vulnerabilidad que podría permitir a un atacante entregar un mensaje de correo electró... • https://www.proofpoint.com/us/security/security-advisories • CWE-354: Improper Validation of Integrity Check Value •
CVSS: 8.1EPSS: 0%CPEs: 3EXPL: 0CVE-2021-27900
https://notcve.org/view.php?id=CVE-2021-27900
06 Apr 2021 — The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) is missing an authorization check on several pages in the Web Console. This enables a view-only user to change any configuration setting and delete any registered agents. All versions before 7.11.1 are affected. El Servidor Proofpoint Insider Threat Management (anteriormente ObserveIT Server) presenta una falta de verificación de autorización en varias páginas de la consola web. Esto permite que un usuario de solo lectura cambi... • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2021-0005 • CWE-862: Missing Authorization •
CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0CVE-2021-22158
https://notcve.org/view.php?id=CVE-2021-22158
06 Apr 2021 — The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) is vulnerable to XML external entity (XXE) injection in the Web Console. The vulnerability requires admin user privileges and knowledge of the XML file's encryption key to successfully exploit. All versions before 7.11 are affected. El Servidor Proofpoint Insider Threat Management (anteriormente ObserveIT Server) es vulnerable a una XML external entity (XXE) en la consola web. La vulnerabilidad requiere privilegios de usuario a... • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2021-0003 • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 7.4EPSS: 0%CPEs: 6EXPL: 0CVE-2021-27899
https://notcve.org/view.php?id=CVE-2021-27899
06 Apr 2021 — The Proofpoint Insider Threat Management Agents (formerly ObserveIT Agent) for MacOS and Linux perform improper validation of the ITM Server's certificate, which enables a remote attacker to intercept and alter these communications using a man-in-the-middle attack. All versions before 7.11.1 are affected. Agents for Windows and Cloud are not affected. Los Agentes Proofpoint Insider Threat Management (anteriormente ObserveIT Agent) para MacOS y Linux llevan a cabo una comprobación inapropiada del certificado... • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2021-0004 • CWE-295: Improper Certificate Validation •
CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0CVE-2021-22157
https://notcve.org/view.php?id=CVE-2021-22157
06 Apr 2021 — Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before 7.11.1 allows stored XSS. Proofpoint Insider Threat Management Server (anteriormente ObserveIT Server) versiones anteriores a 7.11.1, permite un ataque de tipo XSS almacenado • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2021-0002 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •