TCP Reflected Amplification Vulnerability in Forcepoint NGFW Engine
CVE-2021-41530

7.5HIGH

Key Information:

Vendor: Forcepoint
Status: Forcepoint Next Generation Firewall
Vendor: CVE Published:; 4 October 2021

What is CVE-2021-41530?

The Forcepoint NGFW Engine is susceptible to a TCP reflected amplification vulnerability. This issue is present in versions 6.5.11 and earlier, 6.8.6 and earlier, and 6.10.0, specifically when the HTTP User Response functionality is configured. This vulnerability can enable attackers to exploit network services to amplify traffic, potentially overwhelming the targeted systems and leading to service disruptions.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Forcepoint Next Generation Firewall NGFW Engine versions 6.5.11 and earlier, 6.8.6 and earlier, and 6.10.0 are all vulnerable, if HTTP User Response has been configured.

References

https://help.forcepoint.com/security/CVE/CVE-2021-41530.html

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 4, 2021
Vulnerability Reserved
Sep 20, 2021

JSON

Forcepoint

What is CVE-2021-41530?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.