TCP Reflected Amplification Vulnerability in Forcepoint NGFW Engine
CVE-2021-41530

7.5HIGH

Key Information:

Vendor: Forcepoint
Status: Forcepoint Next Generation Firewall
Vendor: CVE Published:; 4 October 2021

What is CVE-2021-41530?

The Forcepoint NGFW Engine is susceptible to a TCP reflected amplification vulnerability. This issue is present in versions 6.5.11 and earlier, 6.8.6 and earlier, and 6.10.0, specifically when the HTTP User Response functionality is configured. This vulnerability can enable attackers to exploit network services to amplify traffic, potentially overwhelming the targeted systems and leading to service disruptions.

Affected Version(s)

Forcepoint Next Generation Firewall NGFW Engine versions 6.5.11 and earlier, 6.8.6 and earlier, and 6.10.0 are all vulnerable, if HTTP User Response has been configured.

References

https://help.forcepoint.com/security/CVE/CVE-2021-41530.html

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 4, 2021
Vulnerability Reserved
Sep 20, 2021