CVE-2023-2820

Name of the Vulnerable Software and Affected Versions Proofpoint Threat Response / Threat Response Auto-Pull (PTR/TRAP) versions prior to 5.10.0

Description An information disclosure issue in the faye endpoint could allow an attacker on an adjacent network to obtain credentials to integrated services via a man-in-the-middle position or cryptanalysis of the session traffic. The attacker could then use these credentials to impersonate PTR/TRAP to these services.

Recommendations For versions prior to 5.10.0, update to version 5.10.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the faye endpoint to minimize the risk of exploitation.