CVE-2022-46332

Name of the Vulnerable Software and Affected Versions Proofpoint Enterprise Protection (PPS/PoD) versions 8.19.0 and below

Description The Admin Smart Search feature in Proofpoint Enterprise Protection contains a stored cross-site scripting issue that allows an anonymous email sender to gain admin privileges within the user interface.

Recommendations For versions 8.19.0 and below, update to a version above 8.19.0 to resolve the issue. As a temporary workaround, consider restricting access to the Admin Smart Search feature until a patch is available.