CVE-2022-46334

EUVD-2022-49151
Proofpoint Enterprise Protection (PPS/PoD) contains a vulnerability which allows the pps user to escalate to root privileges due to unnecessary permissions. This affects all versions 8.19.0 and below.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
ProofpointCNA
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 9%
Affected Products (NVD)
VendorProductVersion
proofpointenterprise_protection
𝑥
≤ 8.19.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.proofpoint.com/security/security-advisories/pfpt-sa-2022-0004
https://www.proofpoint.com/security/security-advisories/pfpt-sa-2022-0004