A password reset vulnerability has been discovered in Forcepoint Email Security 8.5.x. The password reset URL can be used after the intended expiration period or after the URL has already been used to reset a password.
References
Link | Resource |
---|---|
https://help.forcepoint.com/security/CVE/CVE-2018-16529.html | Vendor Advisory |
https://seclists.org/fulldisclosure/2018/Nov/23 | Exploit Mailing List Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: forcepoint
Published: 2019-03-28T16:02:03
Updated: 2021-09-10T17:09:52
Reserved: 2018-09-05T00:00:00
Link: CVE-2018-16529
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-03-28T17:29:00.257
Modified: 2022-04-22T19:24:43.020
Link: CVE-2018-16529
JSON object: View
Redhat Information
No data.
CWE