Security Advisory

CVE-2023-0090

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-03-08 00:27:36

Last updated 2025-02-28 18:28:42

Assigner Proofpoint

State PUBLISHED

Description

The webservices in Proofpoint Enterprise Protection (PPS/POD) contain a vulnerability that allows for an anonymous user to execute remote code through eval injection. Exploitation requires network access to the webservices API, but such access is a non-standard configuration. This affects all versions 8.20.0 and below.

← Browse all CVEs View on cve.org ↗