CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-14009
https://notcve.org/view.php?id=CVE-2020-14009
Proofpoint Enterprise Protection (PPS/PoD) before 8.16.4 contains a vulnerability that could allow an attacker to deliver an email message with a malicious attachment that bypasses scanning and file-blocking rules. The vulnerability exists because messages with certain crafted and malformed multipart structures are not properly handled. Proofpoint Enterprise Protection (PPS/PoD) versiones anteriores a 8.16.4, contiene una vulnerabilidad que podría permitir a un atacante entregar un mensaje de correo electrónico con un archivo adjunto malicioso que omita las reglas de escaneo y bloqueo de archivos. La vulnerabilidad se presenta porque los mensajes con determinadas estructuras multiparte malformadas y diseñadas no se manejan correctamente • https://www.proofpoint.com/us/security/security-advisories https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2021-0006 • CWE-354: Improper Validation of Integrity Check Value •
CVSS: 8.1EPSS: 0%CPEs: 3EXPL: 0CVE-2021-27900
https://notcve.org/view.php?id=CVE-2021-27900
The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) is missing an authorization check on several pages in the Web Console. This enables a view-only user to change any configuration setting and delete any registered agents. All versions before 7.11.1 are affected. El Servidor Proofpoint Insider Threat Management (anteriormente ObserveIT Server) presenta una falta de verificación de autorización en varias páginas de la consola web. Esto permite que un usuario de solo lectura cambie cualquier ajuste de configuración y elimine cualquier agente registrado. • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2021-0005 • CWE-862: Missing Authorization •
CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0CVE-2021-22158
https://notcve.org/view.php?id=CVE-2021-22158
The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) is vulnerable to XML external entity (XXE) injection in the Web Console. The vulnerability requires admin user privileges and knowledge of the XML file's encryption key to successfully exploit. All versions before 7.11 are affected. El Servidor Proofpoint Insider Threat Management (anteriormente ObserveIT Server) es vulnerable a una XML external entity (XXE) en la consola web. La vulnerabilidad requiere privilegios de usuario administrador y conocimiento de la clave de cifrado del archivo XML para una explotación con éxito. • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2021-0003 • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 7.4EPSS: 0%CPEs: 6EXPL: 0CVE-2021-27899
https://notcve.org/view.php?id=CVE-2021-27899
The Proofpoint Insider Threat Management Agents (formerly ObserveIT Agent) for MacOS and Linux perform improper validation of the ITM Server's certificate, which enables a remote attacker to intercept and alter these communications using a man-in-the-middle attack. All versions before 7.11.1 are affected. Agents for Windows and Cloud are not affected. Los Agentes Proofpoint Insider Threat Management (anteriormente ObserveIT Agent) para MacOS y Linux llevan a cabo una comprobación inapropiada del certificado del servidor ITM, lo que permite a un atacante remoto interceptar y alterar estas comunicaciones usando un ataque de tipo man-in-the-middle. Todas las versiones anteriores a 7.11.1 están afectadas. • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2021-0004 • CWE-295: Improper Certificate Validation •
CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0CVE-2021-22157
https://notcve.org/view.php?id=CVE-2021-22157
Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before 7.11.1 allows stored XSS. Proofpoint Insider Threat Management Server (anteriormente ObserveIT Server) versiones anteriores a 7.11.1, permite un ataque de tipo XSS almacenado • https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2021-0002 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •