RSS   Vulnerabilities for 'Vpn client'   RSS

2019-09-20
 
CVE-2019-6145

CWE-428
 

 
Forcepoint VPN Client for Windows versions lower than 6.6.1 have an unquoted search path vulnerability. This enables local privilege escalation to SYSTEM user. By default, only local administrators can write executables to the vulnerable directories. Forcepoint thanks Peleg Hadar of SafeBreach Labs for finding this vulnerability and for reporting it to us.

 

 >>> Vendor: Forcepoint 7 Products
Vpn client
Web security
Email security
User id
Next generation firewall
Next generation firewall security management center
Web security content gateway


Copyright 2024, cxsecurity.com

 

Back to Top