Vulnerabilities > CVE-2019-6144 - Incorrect Authorization vulnerability in Forcepoint ONE Endpoint 19.04/19.08

047910
CVSS 4.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
SINGLE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
low complexity
forcepoint
CWE-863

Summary

This vulnerability allows a normal (non-admin) user to disable the Forcepoint One Endpoint (versions 19.04 through 19.08) and bypass DLP and Web protection.

Vulnerable Configurations

Part Description Count
Application
Forcepoint
2

Common Weakness Enumeration (CWE)