Login Sign Up

Proofpoint Security Vulnerabilities (CVEs)

Track 8 security vulnerabilities affecting Proofpoint products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.

3 Critical
4 High
1 Medium
🔔 Get Alerts for Proofpoint
CVE-2025-8558 5.4

CVE-2025-8558 is an authentication bypass vulnerability in Proofpoint Insider Threat Management Server that allows unauthenticated users on adjacent n...

Nov 3, 2025
CVE-2023-0089 8.8

This vulnerability in Proofpoint Enterprise Protection allows authenticated users to execute arbitrary code through eval injection in webutils. It aff...

Mar 8, 2023
CVE-2023-0090 9.8

This CVE describes a critical remote code execution vulnerability in Proofpoint Enterprise Protection webservices. An anonymous attacker can execute a...

Mar 8, 2023
CVE-2022-25294 7.8

This vulnerability allows an unprivileged local Windows user to execute arbitrary code with SYSTEM privileges by exploiting a dangerous function in th...

Mar 10, 2022
CVE-2021-27900 8.1

This vulnerability allows view-only users in Proofpoint Insider Threat Management Server to bypass authorization checks and perform administrative act...

Apr 6, 2021
CVE-2021-22158 7.2

This XXE vulnerability in Proofpoint Insider Threat Management Server allows authenticated admin users with knowledge of the XML encryption key to rea...

Apr 6, 2021
CVE-2020-10655 9.8

This vulnerability allows unauthenticated remote attackers to execute arbitrary code with local administrator privileges on Proofpoint Insider Threat ...

Jan 6, 2021
CVE-2020-10658 9.8

CVE-2020-10658 is a critical remote code execution vulnerability in Proofpoint Insider Threat Management Server (formerly ObserveIT Server) that allow...

Jan 6, 2021

Why Monitor Proofpoint Security Vulnerabilities?

Real-time CVE tracking: Our automated system monitors 8+ known vulnerabilities affecting Proofpoint products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.

Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Proofpoint packages in under 60 seconds. No agents required - completely agentless scanning that works across Proofpoint deployments.

Free vulnerability database: Access detailed information about every Proofpoint CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.

🚀 Get Started in 60 Seconds

  • Register free account & add your servers
  • Run one-time scan or schedule automatic monitoring (every 1-24 hours)
  • Receive instant alerts when new Proofpoint CVEs affect your systems
  • Access dashboard with severity breakdown & fix instructions
Start Monitoring Proofpoint CVEs Free