Proofpoint Enterprise Protection (PPS/PoD) before 8.16.4 contains a vulnerability that could allow an attacker to deliver an email message with a malicious attachment that bypasses scanning and file-blocking rules. The vulnerability exists because messages with certain crafted and malformed multipart structures are not properly handled.
References
Link | Resource |
---|---|
https://www.proofpoint.com/us/security/security-advisories | Vendor Advisory |
https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2021-0006 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2021-05-07 12:15
Updated : 2024-02-28 18:28
NVD link : CVE-2020-14009
Mitre link : CVE-2020-14009
CVE.ORG link : CVE-2020-14009
JSON object : View
Products Affected
proofpoint
- enterprise_protection
CWE
CWE-354
Improper Validation of Integrity Check Value