{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-15T10:53:06.599","vulnerabilities":[{"cve":{"id":"CVE-2019-19680","sourceIdentifier":"cve@mitre.org","published":"2020-01-13T21:15:11.120","lastModified":"2024-11-21T04:35:10.720","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A file-extension filtering vulnerability in Proofpoint Enterprise Protection (PPS / PoD), in the unpatched versions of PPS through 8.9.22 and 8.14.2 respectively, allows attackers to bypass protection mechanisms (related to extensions, MIME types, virus detection, and journal entries for transmitted files) by sending malformed (not RFC compliant) multipart email."},{"lang":"es","value":"Una vulnerabilidad de filtrado de extensiones de archivos en Proofpoint Enterprise Protection (PPS / PoD), en las versiones sin parches de PPS a través de 8.9.22 y 8.14.2 respectivamente, permite a los atacantes eludir los mecanismos de protección (relacionados con extensiones, tipos MIME, detección de virus y entradas de diario para archivos transmitidos) mediante el envío de correo electrónico multiparte con formato incorrecto (no compatible con RFC)."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","baseScore":6.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:proofpoint:enterprise_protection:*:*:*:*:lts:*:*:*","versionEndIncluding":"8.9.22","matchCriteriaId":"8092EE05-7BA8-4642-8801-DEFE297AB63F"},{"vulnerable":true,"criteria":"cpe:2.3:a:proofpoint:enterprise_protection:*:*:*:*:-:*:*:*","versionEndIncluding":"8.14.2","matchCriteriaId":"01139471-620E-44EB-87D3-B14BCBC67F89"}]}]}],"references":[{"url":"https://www.proofpoint.com/us/security/cve-2019-19680","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2020-0001","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://www.proofpoint.com/us/security/cve-2019-19680","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2020-0001","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}