Missing Authorization Vulnerability in Forcepoint F|One SmartEdge Agent for Windows
CVE-2023-1705

8.4HIGH

Key Information:

Vendor: Forcepoint
Status: F|one Smartedge Agent
Vendor: CVE Published:; 29 January 2024

What is CVE-2023-1705?

A missing authorization vulnerability exists in the Forcepoint F|One SmartEdge Agent on Windows, specifically within the bgAutoinstaller service modules. This flaw enables attackers to escalate privileges and bypass certain functionalities. Organizations using affected versions of the F|One SmartEdge Agent prior to 1.7.0.230330-554 may face enhanced risks, as unauthorized users could exploit this vulnerability for malicious purposes.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

F|One SmartEdge Agent Windows 0

References

https://support.forcepoint.com/s/article/000042333

CVSS V3.1

Score:

8.4

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Jan 29, 2024
Vulnerability Reserved
Mar 29, 2023

Credit

Odyssey CyberSecurity IthacaLabs

JSON

Forcepoint

What is CVE-2023-1705?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Credit

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.