CVE-2019-6145

Published: Sep 20, 2019Modified: Nov 21, 2024

6.7

Vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploitability: 0.8 / Impact: 5.9

Source: NVD

Description

Forcepoint VPN Client for Windows versions lower than 6.6.1 have an unquoted search path vulnerability. This enables local privilege escalation to SYSTEM user. By default, only local administrators can write executables to the vulnerable directories. Forcepoint thanks Peleg Hadar of SafeBreach Labs for finding this vulnerability and for reporting it to us.

Affected (1)

Products: Forcepoint: Vpn Client

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Forcepoint Vpn Client	Before 6.6.1

Related CWEs

Unquoted Search Path or Element

The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.

References (4)

https://help.forcepoint.com/security/CVE/CVE-2019-6145.html

Source: psirt@forcepoint.com

Vendor Advisory

https://safebreach.com/Post/Forcepoint-VPN-Client-for-Windows-Unquoted-Search-Path-and-Potential-Abuses-CVE-2019-6145

Source: psirt@forcepoint.com

ExploitThird Party Advisory

https://help.forcepoint.com/security/CVE/CVE-2019-6145.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://safebreach.com/Post/Forcepoint-VPN-Client-for-Windows-Unquoted-Search-Path-and-Potential-Abuses-CVE-2019-6145

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.