Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Enterprise Protection S/MIME Opaque Signature Attachment Scanning Bypass
Vulnerability Description
Enterprise Protection contains an improper input validation vulnerability in attachment defense that allows an unauthenticated remote attacker to bypass attachment scanning security policy by sending a malicious S/MIME attachment with an opaque signature. When opened by a recipient in a downstream email client, the malicious attachment could cause partial loss of integrity and confidentiality to their system.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Vulnerability Type
对因果或异常条件的不恰当检查
Vulnerability Title
Proofpoint Enterprise Protection 安全漏洞
Vulnerability Description
Proofpoint Enterprise Protection是美国Proofpoint公司的一个应用程序。提供了保护电子邮件的功能。 Proofpoint Enterprise Protection 8.22.0之前版本存在安全漏洞,该漏洞源于附件防御中输入验证不当,可能导致绕过附件扫描安全策略。
CVSS Information
N/A
Vulnerability Type
N/A