Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Enterprise Protection Backslash URL Rewrite Bypass
Vulnerability Description
Enterprise Protection contains a vulnerability in URL rewriting that allows an unauthenticated remote attacker to send an email which bypasses URL protections impacting the integrity of recipient's email. This occurs due to improper filtering of backslashes within URLs and affects all versions of 8.21, 8.20 and 8.18 prior to 8.21.0 patch 5115, 8.20.6 patch 5114 and 8.18.6 patch 5113 respectively.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
Vulnerability Type
特殊元素过滤不恰当
Vulnerability Title
Proofpoint Enterprise Protection 安全漏洞
Vulnerability Description
Proofpoint Enterprise Protection是美国Proofpoint公司的一个应用程序。提供了保护电子邮件的功能。 Proofpoint Enterprise Protection 8.21.0 patch 5115之前版本、8.20.6 patch 5114之前版本和8.18.6 patch 5113之前版本存在安全漏洞,该漏洞源于URL重写中对反斜杠的过滤不当,可能导致未经验证的远程攻击者发送绕过URL保护的电子邮件,影响接收者邮件的完整性。
CVSS Information
N/A
Vulnerability Type
N/A