← Back to CVEs
CVE-2019-6147
MEDIUM5.9
Description
Forcepoint NGFW Security Management Center (SMC) versions lower than 6.5.12 or 6.7.1 have a rare issue that in specific circumstances can corrupt the internal configuration database. When the database is corrupted, the SMC might produce an incorrect IPsec configuration for the Forcepoint Next Generation Firewall (NGFW), possibly resulting in settings that are weaker than expected. All SMC versions lower than 6.5.12 or 6.7.1 are vulnerable.
CVE Details
CVSS v3.1 Score5.9
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Attack VectorNETWORK
ComplexityHIGH
Privileges RequiredNONE
User InteractionNONE
Published12/23/2019
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
forcepoint:next_generation_firewall_security_management_center
Weaknesses (CWE)
CWE-704
References
https://help.forcepoint.com/security/CVE/CVE-2019-6147.html(psirt@forcepoint.com)
https://help.forcepoint.com/security/CVE/CVE-2019-6147.html(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.