CVE-2023-2819

low-risk
Published 2023-06-14

A stored cross-site scripting vulnerability in the Sources UI in Proofpoint Threat Response/ Threat Response Auto Pull (PTR/TRAP) could allow an authenticated administrator on an adjacent network to replace the image file with an arbitrary MIME type.  This could result in arbitrary javascript code execution in an admin context. All versions prior to 5.10.0 are affected.  

Do I need to act?

-
0.09% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
4
CVSS 4.3/10 Medium
ADJACENT_NETWORK / LOW complexity

Affected Products (1)

Threat Response Auto Pull

Affected Vendors

Proofpoint

References (2)

Vendor Advisory https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-0002
Vendor Advisory https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2023-0002
20
/ 100
low-risk
Severity 15/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 5/34 · Minimal