Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2019-6145

Forcepoint VPN Client for Windows versions lower than 6.6.1 have an unquoted search path vulnerability. This enables local privilege escalation to SYSTEM user. By default, only local administrators can write executables to the vulnerable directories. Forcepoint thanks Peleg Hadar of SafeBreach Labs for finding this vulnerability and for reporting it to us.

Published

2019-09-20T20:15:11.320

Last Modified

2024-11-21T04:46:01.840

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.7 (MEDIUM)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.9

Impact Score

10.0

Weaknesses

Type: Primary
CWE-428

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	forcepoint	vpn_client	< 6.6.1	Yes

References

https://help.forcepoint.com/security/CVE/CVE-2019-6145.html Vendor Advisory ([email protected])
https://safebreach.com/Post/Forcepoint-VPN-Client-for-Windows-Unquoted-Search-Path-and-Potential-Abuses-CVE-2019-6145 Exploit, Third Party Advisory ([email protected])
https://help.forcepoint.com/security/CVE/CVE-2019-6145.html Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://safebreach.com/Post/Forcepoint-VPN-Client-for-Windows-Unquoted-Search-Path-and-Potential-Abuses-CVE-2019-6145 Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)