Vulnerability Details CVE-2023-0089
The webutils in Proofpoint Enterprise Protection (PPS/POD) contain a vulnerability that allows an authenticated user to execute remote code through 'eval injection'.
This affects all versions 8.20.0 and below.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.9%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2023-0089
-
cpe:2.3:a:proofpoint:enterprise_protection:-
-
cpe:2.3:a:proofpoint:enterprise_protection:8.12.0-2104190000
-
cpe:2.3:a:proofpoint:enterprise_protection:8.12.0-2106240000
-
cpe:2.3:a:proofpoint:enterprise_protection:8.12.0-2107140000
-
cpe:2.3:a:proofpoint:enterprise_protection:8.12.0-2108090000
-
cpe:2.3:a:proofpoint:enterprise_protection:8.13.16
-
cpe:2.3:a:proofpoint:enterprise_protection:8.18.0
-
cpe:2.3:a:proofpoint:enterprise_protection:8.18.6
-
cpe:2.3:a:proofpoint:enterprise_protection:8.20.0
-
cpe:2.3:a:proofpoint:enterprise_protection:8.9.22