Vulnerabilities > CVE-2019-6144 - Incorrect Authorization vulnerability in Forcepoint ONE Endpoint 19.04/19.08

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
NONE
network
low complexity
forcepoint
CWE-863

Summary

This vulnerability allows a normal (non-admin) user to disable the Forcepoint One Endpoint (versions 19.04 through 19.08) and bypass DLP and Web protection.

Vulnerable Configurations

Part Description Count
Application
Forcepoint
2

Common Weakness Enumeration (CWE)