Vulnerability Details CVE-2023-0089
The webutils in Proofpoint Enterprise Protection (PPS/POD) contain a vulnerability that allows an authenticated user to execute remote code through 'eval injection'.
This affects all versions 8.20.0 and below.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 49.4%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2023-0089
-
cpe:2.3:a:proofpoint:enterprise_protection:-
-
cpe:2.3:a:proofpoint:enterprise_protection:8.12.0-2104190000
-
cpe:2.3:a:proofpoint:enterprise_protection:8.12.0-2106240000
-
cpe:2.3:a:proofpoint:enterprise_protection:8.12.0-2107140000
-
cpe:2.3:a:proofpoint:enterprise_protection:8.12.0-2108090000
-
cpe:2.3:a:proofpoint:enterprise_protection:8.13.16
-
cpe:2.3:a:proofpoint:enterprise_protection:8.18.0
-
cpe:2.3:a:proofpoint:enterprise_protection:8.18.6
-
cpe:2.3:a:proofpoint:enterprise_protection:8.20.0
-
cpe:2.3:a:proofpoint:enterprise_protection:8.9.22