CyberSec.Space Logo
Back to CVE Browser

CVE-2018-16529

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0130%
EPSS Percentile4.02th
PublishedMar 28, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

A password reset vulnerability has been discovered in Forcepoint Email Security 8.5.x. The password reset URL can be used after the intended expiration period or after the URL has already been used to reset a password.

Affected Platforms (CPE)

πŸ“¦
Forcepoint

Email Security

>= 8.5.0 and <= 8.5.3

References & Advisories

πŸ”— https://help.forcepoint.com/security/CVE/CVE-2018-16529.html
πŸ”— https://seclists.org/fulldisclosure/2018/Nov/23
πŸ”— https://help.forcepoint.com/security/CVE/CVE-2018-16529.html
πŸ”— https://seclists.org/fulldisclosure/2018/Nov/23

Related Vulnerabilities

CVE-2017-234310.0

The Integrated User Firewall (UserFW) feature was introduced in Junos OS version 12.1X47-D10 on the Juniper SRX Series devices to ...

CVE-2002-136110.0

overflow.cgi CGI script in Sun Cobalt RaQ 4 with the SHP (Security Hardening Patch) installed allows remote attackers to execute a...

CVE-2018-165309.8

A stack-based buffer overflow in Forcepoint Email Security version 8.5 allows an attacker to craft malicious input and potentially...

CVE-2019-61409.8

A configuration issue has been discovered in Forcepoint Email Security 8.4.x and 8.5.x: the product is left in a vulnerable state ...