Vulnerability Details CVE-2023-0089
The webutils in Proofpoint Enterprise Protection (PPS/POD) contain a vulnerability that allows an authenticated user to execute remote code through 'eval injection'.
This affects all versions 8.20.0 and below.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.1%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2023-0089
-
cpe:2.3:a:proofpoint:enterprise_protection:-
-
cpe:2.3:a:proofpoint:enterprise_protection:8.12.0-2104190000
-
cpe:2.3:a:proofpoint:enterprise_protection:8.12.0-2106240000
-
cpe:2.3:a:proofpoint:enterprise_protection:8.12.0-2107140000
-
cpe:2.3:a:proofpoint:enterprise_protection:8.12.0-2108090000
-
cpe:2.3:a:proofpoint:enterprise_protection:8.13.16
-
cpe:2.3:a:proofpoint:enterprise_protection:8.18.0
-
cpe:2.3:a:proofpoint:enterprise_protection:8.18.6
-
cpe:2.3:a:proofpoint:enterprise_protection:8.20.0
-
cpe:2.3:a:proofpoint:enterprise_protection:8.9.22