Critical severity9.8NVD Advisory· Published Mar 8, 2023· Updated Jun 17, 2026
CVE-2023-0090
CVE-2023-0090
Description
The webservices in Proofpoint Enterprise Protection (PPS/POD) contain a vulnerability that allows for an anonymous user to execute remote code through 'eval injection'. Exploitation requires network access to the webservices API, but such access is a non-standard configuration. This affects all versions 8.20.0 and below.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=8.20.0+ 1 more
- (no CPE)range: <=8.20.0
- (no CPE)range: 8.*
Patches
Vulnerability mechanics
References
1- www.proofpoint.com/security/security-advisories/pfpt-sa-2023-0001nvdVendor Advisory
News mentions
0No linked articles in our index yet.