Next Generation Firewall
Approved changes feed: RSS · Atom
cpe:2.3:a:forcepoint:next_generation_firewall:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Forcepoint (c3005c4c-8fd3-593e-a1ec-2b5662cc73af) |
|---|---|
| Product | Next Generation Firewall (b1db215e-9b71-5333-8171-5c29611b60d2) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-12690 |
vulnerable | 2026-06-03 14:58:44.735097 |
Local Privilege Escalation in NGFW Engine
Execution with unnecessary privileges in Forcepoint NGFW Engine allows local privilege escalation.This issue affects NGFW Engine through 6.10.19, through 7.3.0, through 7.2.4, through 7.1.10.
Published: 2026-03-11T15:36:32.755Z
Updated: 2026-03-11T16:10:28.588Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-41530 |
vulnerable | 2026-06-03 14:45:25.864552 |
Details available
Forcepoint NGFW Engine versions 6.5.11 and earlier, 6.8.6 and earlier, and 6.10.0 are vulnerable to TCP reflected amplification vulnerability, if HTTP User Response has been configured.
Published: 2021-10-04T16:58:41.000Z
Updated: 2024-08-04T03:15:28.647Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-6143 |
vulnerable | 2026-06-03 14:40:36.831232 |
Details available
Forcepoint Next Generation Firewall (Forcepoint NGFW) 6.4.x before 6.4.7, 6.5.x before 6.5.4, and 6.6.x before 6.6.2 has a serious authentication vulnerability that potentially allows unauthorized users to bypass password authentication and access services protected by the NGFW Engine. The vulnerability affects the following NGFW features when the LDAP authentication method is used as the backend authentication: IPsec VPN, SSL VPN or Browser-based user authentication. The vulnerability does not apply when any other backend authentication is used. The RADIUS authentication method is not vulnerable, for example.
Published: 2019-08-20T20:24:21.000Z
Updated: 2024-08-04T20:16:24.383Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.