Security Control Bypass in Proofpoint Enterprise Protection
CVE-2021-39304

7.5HIGH

Key Information:

Vendor: Proofpoint
Status: Enterprise Protection
Vendor: CVE Published:; 13 October 2021

What is CVE-2021-39304?

A vulnerability exists in Proofpoint Enterprise Protection that allows attackers to bypass security controls in versions prior to 8.12.0-2108090000. This condition may allow unauthorized users to perform actions that compromise the security posture of the affected systems. It is crucial for organizations using this software to update to the latest version to mitigate potential exploitation.

References

https://www.proofpoint.com/us/blog

x_refsource_MISC

https://www.proofpoint.com/us/security/security-advisorie...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 13, 2021
Vulnerability Reserved
Aug 20, 2021