CVE-2022-46332

CVSS V2 None CVSS V3 None
Description
The Admin Smart Search feature in Proofpoint Enterprise Protection (PPS/PoD) contains a stored cross-site scripting vulnerability that enables an anonymous email sender to gain admin privileges within the user interface. This affects all versions 8.19.0 and below.
Overview
  • CVE ID
  • CVE-2022-46332
  • Assigner
  • security@proofpoint.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2022-12-06T20:15:10
  • Last Modified Date
  • 2022-12-09T14:32:21
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:proofpoint:enterprise_protection:*:*:*:*:*:*:*:* 1 OR 8.19.0
History
Created Old Value New Value Data Type Notes
2022-12-07 18:06:51 Added to TrackCVE
2022-12-08 17:15:54 2022-12-06T20:15:10.610 2022-12-06T20:15:10 CVE Published Date updated
2022-12-08 17:15:54 2022-12-07T04:52:18 CVE Modified Date updated
2022-12-08 17:15:54 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2022-12-09 15:14:13 2022-12-09T14:32:21 CVE Modified Date updated
2022-12-09 15:14:13 Undergoing Analysis Analyzed Vulnerability Status updated
2022-12-09 15:14:14 CWE-79 Weakness Enumeration new
2022-12-09 15:14:15 CPE Information updated