Skip to main content

Next Generation Firewall

3 CVEs product

Monthly

CVE-2025-12690 HIGH This Week

Execution with unnecessary privileges in Forcepoint NGFW Engine allows local privilege escalation.This issue affects NGFW Engine versions up to 6.10.19 is affected by execution with unnecessary privileges.

Privilege Escalation Next Generation Firewall
NVD VulDB
CVSS 4.0
7.3
EPSS
0.0%
CVE-2021-41530 HIGH This Week

Forcepoint NGFW Engine versions 6.5.11 and earlier, 6.8.6 and earlier, and 6.10.0 are vulnerable to TCP reflected amplification vulnerability, if HTTP User Response has been configured. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Next Generation Firewall
NVD
CVSS 3.1
7.5
EPSS
0.9%
CVE-2019-6143 CRITICAL Act Now

Forcepoint Next Generation Firewall (Forcepoint NGFW) 6.4.x before 6.4.7, 6.5.x before 6.5.4, and 6.6.x before 6.6.2 has a serious authentication vulnerability that potentially allows unauthorized. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Next Generation Firewall
NVD
CVSS 3.1
9.1
EPSS
1.1%
EPSS 0% CVSS 7.3
HIGH This Week

Execution with unnecessary privileges in Forcepoint NGFW Engine allows local privilege escalation.This issue affects NGFW Engine versions up to 6.10.19 is affected by execution with unnecessary privileges.

Privilege Escalation Next Generation Firewall
NVD VulDB
EPSS 1% CVSS 7.5
HIGH This Week

Forcepoint NGFW Engine versions 6.5.11 and earlier, 6.8.6 and earlier, and 6.10.0 are vulnerable to TCP reflected amplification vulnerability, if HTTP User Response has been configured. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Next Generation Firewall
NVD
EPSS 1% CVSS 9.1
CRITICAL Act Now

Forcepoint Next Generation Firewall (Forcepoint NGFW) 6.4.x before 6.4.7, 6.5.x before 6.5.4, and 6.6.x before 6.6.2 has a serious authentication vulnerability that potentially allows unauthorized. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Next Generation Firewall
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy