Forcepoint Email Security 8.5.x Password Reset Exploitation Vulnerability

Forcepoint Email Security 8.5.x Password Reset Exploitation Vulnerability

CVE-2018-16529 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

A password reset vulnerability has been discovered in Forcepoint Email Security 8.5.x. The password reset URL can be used after the intended expiration period or after the URL has already been used to reset a password.

Learn more about our Web Application Penetration Testing UK.