Security Advisories

Stay up-to-date with our latest security advisories

Reference this page to stay informed about important security vulnerabilities that could affect specific versions of Proofpoint products or services.

PPS/POD and Essentials Scanning Bypass with Multi-part Attachments

CVE-2020-14009 | CVSS 7.1 (High)

Learn More

Insider Threat Management Server Authorization Bypass

CVE-2021-27900 | CVSS 8.1 (High)

Learn More

Insider Threat Management Agent Improper Certificate Validation Vulnerability

CVE-2021-27899 | CVSS 7.4 (High)

Learn More

Insider Threat Management Server Authenticated XML External Entity Vulnerability

CVE-2021-22158 | CVSS 8.3 (High)

Learn More

Insider Threat Management Server Multiple Unauthenticated XSS Vulnerabilities

CVE-2021-22157 | CVSS 8.2 (High)

Learn More

Insider Threat Management Windows Agent Local Privilege Escalation Vulnerability

CVE-2021-22159 | CVSS 7.8 (High)

Learn More

Insider Threat Management Server Remote Code Execution Vulnerabilities

CVE-2020-10655 | CVSS: 9.8 (Critical)
CVE-2020-10656 | CVSS: 9.8 (Critical)
CVE-2020-10657 | CVSS: 7.2 (High)
CVE-2020-10658 | CVSS: 9.8 (Critical)

Learn More

Insider Threat Management Remote Code Execution Vulnerability

CVE-2020-8884 | CVSS 8.8 (High)

Learn More

Proofpoint Enterprise Protection Attachment Scanning Bypass Vulnerability

CVE-2019-19680 | CVSS 8.9 (High)

Learn More

Response to CVE-2019-20364

CVE-2019-20364 | CVSS 3.7 (Low)

Learn More