Medium severity5.3NVD Advisory· Published Jan 9, 2024· Updated Jun 17, 2026
CVE-2023-5770
CVE-2023-5770
Description
Proofpoint Enterprise Protection contains a vulnerability in the email delivery agent that allows an unauthenticated attacker to inject improperly encoded HTML into the email body of a message through the email subject. The vulnerability is caused by inappropriate encoding when rewriting the email before delivery.This issue affects Proofpoint Enterprise Protection: from 8.20.2 before patch 4809, from 8.20.0 before patch 4805, from 8.18.6 before patch 4804 and all other prior versions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2from 8.20.2 before patch 4809, from 8.20.0 before patch 4805, from 8.18.6 before patch 4804 and all other prior versions+ 1 more
- (no CPE)range: from 8.20.2 before patch 4809, from 8.20.0 before patch 4805, from 8.18.6 before patch 4804 and all other prior versions
- (no CPE)range: 8.20.2
Patches
Vulnerability mechanics
References
1- www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-0009nvdVendor Advisory
News mentions
0No linked articles in our index yet.