CyberSec.Space Logo
CVEブラウザに戻る

CVE-2018-16529

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0130%
EPSS Percentile4.02th
Published2019年3月28日
Last Modified2024年11月21日

Vulnerability Description

A password reset vulnerability has been discovered in Forcepoint Email Security 8.5.x. The password reset URL can be used after the intended expiration period or after the URL has already been used to reset a password.

Affected Platforms (CPE)

📦
Forcepoint

Email Security

>= 8.5.0 and <= 8.5.3

References & Advisories

🔗 https://help.forcepoint.com/security/CVE/CVE-2018-16529.html
🔗 https://seclists.org/fulldisclosure/2018/Nov/23
🔗 https://help.forcepoint.com/security/CVE/CVE-2018-16529.html
🔗 https://seclists.org/fulldisclosure/2018/Nov/23

関連する脆弱性情報

CVE-2017-234310.0

The Integrated User Firewall (UserFW) feature was introduced in Junos OS version 12.1X47-D10 on the Juniper SRX Series devices to ...

CVE-2002-136110.0

overflow.cgi CGI script in Sun Cobalt RaQ 4 with the SHP (Security Hardening Patch) installed allows remote attackers to execute a...

CVE-2018-165309.8

A stack-based buffer overflow in Forcepoint Email Security version 8.5 allows an attacker to craft malicious input and potentially...

CVE-2019-61409.8

A configuration issue has been discovered in Forcepoint Email Security 8.4.x and 8.5.x: the product is left in a vulnerable state ...