Forcepoint Data Loss Prevention vulnerabilities
2 known vulnerabilities affecting forcepoint/data_loss_prevention.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2022-1700P3CRITICALCVSS 9.8fixed in 8.8.2≥ unspecified, < 8.8.22022-09-12
CVE-2022-1700 [CRITICAL] CWE-611 CVE-2022-1700: Improper Restriction of XML External Entity Reference ('XXE') vulnerability in the Policy Engine of
Improper Restriction of XML External Entity Reference ('XXE') vulnerability in the Policy Engine of Forcepoint Data Loss Prevention (DLP), which is also leveraged by Forcepoint One Endpoint (F1E), Web Security Content Gateway, Email Security with DLP enabled, and Cloud Security Gateway prior to June 20, 2022. The XML parser in the Policy Engine was f
nvd
CVE-2020-6590P3HIGHCVSS 7.5fixed in 8.7.12021-04-08
CVE-2020-6590 [HIGH] CWE-611 CVE-2020-6590: Forcepoint Web Security Content Gateway versions prior to 8.5.4 improperly process XML input, leadin
Forcepoint Web Security Content Gateway versions prior to 8.5.4 improperly process XML input, leading to information disclosure.
nvd