CVE-2024-3676

HIGH

Proofpoint Enterprise Protection - SQL Injection

Title source: llm

Description

The Proofpoint Encryption endpoint of Proofpoint Enterprise Protection contains an Improper Input Validation vulnerability that allows an unauthenticated remote attacker with a specially crafted HTTP request to create additional Encryption user accounts under the attacker's control. These accounts are able to send spoofed email to any users within the domains configured by the Administrator.

References (1)

Core 1

Core References

Various Sources

https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2024-0002

Scores

CVSS v3 7.5

EPSS 0.0037

EPSS Percentile 28.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-20

Status published

Products (5)

Proofpoint/Enterprise Protection 8.18.6 - patch 4868

Proofpoint/Enterprise Protection 8.20.0 - patch 4869

Proofpoint/Enterprise Protection 8.20.2 - patch 4870

Proofpoint/Enterprise Protection 8.20.4 - patch 4871

Proofpoint/Enterprise Protection 8.21.0 - patch 4871

Published May 14, 2024

Tracked Since Feb 18, 2026