Security Advisories

Stay up-to-date with our latest security advisories

Reference this page to stay informed about important security vulnerabilities that could affect specific versions of Proofpoint products or services.

ITM Server Multiple Vulnerabilities

CVE-2023-35998 | CVSS 4.6 (Medium)
CVE-2023-36000 | CVSS 6.5 (Medium)
CVE-2023-36002 | CVSS 4.3 (Medium)

Type: Security Advisory

ITM Windows Agent Insecure Filesystem Permissions

CVE-2023-2818 | CVSS 5.2 (Medium)

Type: Security Advisory

Proofpoint Threat Response / Threat Response Auto-Pull (PTR/TRAP) Information Disclosure

CVE-2023-2820 | CVSS 6.1 (Medium)

Type: Security Advisory

Proofpoint Threat Response / Threat Response Auto Pull (PTR/TRAP) Cross Site Scripting in Sources UI

CVE-2023-2819 | CVSS 4.3 (Medium)

Type: Security Advisory

Proofpoint Enterprise Protection multiple perl eval vulnerabilities

CVE-2023-0089 | CVSS 8.8 (High), CVE-2023-0090 | CVSS 8.1 (High)

Type: Security Advisory

Proofpoint Enterprise Local Protection Privilege Escalation

CVE-2022-46334 | CVSS 6.7 (Medium)

Type: Security Advisory

Proofpoint Enterprise Protection (PPS/PoD) XSS in "Attachment Names"

CVE-2022-46332 | CVSS 9.6 (Critical)

Type: Security Advisory

Proofpoint Enterprise Protection (PPS/PoD) perl eval() arbitrary command execution

CVE-2022-46333 | CVSS 7.2 (High)

Type: Security Advisory

ITM Windows Agent Local Privilege Escalation

CVE-2022-25294 | CVSS 7.8 (High)

Type: Security Advisory

Proofpoint Email Protection URL Rewrite Bypass via Invalid URL Scheme

CVE-2021-31608 | CVSS 7.4 (High)

Type: Security Advisory