Details of VAR-202110-0521

ID

VAR-202110-0521

CVE

CVE-2021-41530

TITLE

Forcepoint LLC. of Next Generation Firewall (NGFW) Vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2021-021169

DESCRIPTION

Forcepoint NGFW Engine versions 6.5.11 and earlier, 6.8.6 and earlier, and 6.10.0 are vulnerable to TCP reflected amplification vulnerability, if HTTP User Response has been configured. Forcepoint LLC. of Next Generation Firewall (NGFW) Exists in unspecified vulnerabilities.Service operation interruption (DoS) It may be in a state

Trust: 1.71

sources: NVD: CVE-2021-41530 // JVNDB: JVNDB-2021-021169 // VULHUB: VHN-402708

AFFECTED PRODUCTS

vendor:	forcepoint	model:	next generation firewall	scope:	eq	version:	6.10.0	Trust: 1.8
vendor:	forcepoint	model:	next generation firewall	scope:	gte	version:	6.8.0	Trust: 1.0
vendor:	forcepoint	model:	next generation firewall	scope:	lte	version:	6.8.6	Trust: 1.0
vendor:	forcepoint	model:	next generation firewall	scope:	lte	version:	6.5.11	Trust: 1.0
vendor:	forcepoint	model:	next generation firewall	scope:	-	version:	-	Trust: 0.8
vendor:	forcepoint	model:	next generation firewall	scope:	eq	version:	6.8.0 to 6.8.6	Trust: 0.8
vendor:	forcepoint	model:	next generation firewall	scope:	eq	version:	-	Trust: 0.8
vendor:	forcepoint	model:	next generation firewall	scope:	lte	version:	6.5.11 and earlier	Trust: 0.8

sources: JVNDB: JVNDB-2021-021169 // NVD: CVE-2021-41530

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2021-41530
value:	HIGH
Trust: 1.0
NVD:	CVE-2021-41530
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-202110-071
value:	HIGH
Trust: 0.6
VULHUB:	VHN-402708
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2021-41530
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-402708
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2021-41530
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.1
Trust: 1.0
NVD:	CVE-2021-41530
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: VULHUB: VHN-402708 // JVNDB: JVNDB-2021-021169 // CNNVD: CNNVD-202110-071 // NVD: CVE-2021-41530

PROBLEMTYPE DATA

problemtype:	NVD-CWE-Other	Trust: 1.0
problemtype:	others (CWE-Other) [NVD evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2021-021169 // NVD: CVE-2021-41530

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202110-071

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202110-071

PATCH

title:

Forcepoint NGFW Engine Security vulnerabilities

url:

http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=165567

Trust: 0.6

sources: CNNVD: CNNVD-202110-071

EXTERNAL IDS

db:	NVD	id:	CVE-2021-41530	Trust: 3.3
db:	JVNDB	id:	JVNDB-2021-021169	Trust: 0.8
db:	CNNVD	id:	CNNVD-202110-071	Trust: 0.6
db:	VULHUB	id:	VHN-402708	Trust: 0.1

sources: VULHUB: VHN-402708 // JVNDB: JVNDB-2021-021169 // CNNVD: CNNVD-202110-071 // NVD: CVE-2021-41530

REFERENCES

url:	https://help.forcepoint.com/security/cve/cve-2021-41530.html	Trust: 2.5
url:	https://nvd.nist.gov/vuln/detail/cve-2021-41530	Trust: 1.4
url:	https://vigilance.fr/vulnerability/forcepoint-next-generation-firewall-denial-of-service-via-tcp-reflected-amplification-36589	Trust: 0.6

sources: VULHUB: VHN-402708 // JVNDB: JVNDB-2021-021169 // CNNVD: CNNVD-202110-071 // NVD: CVE-2021-41530

SOURCES

db:	VULHUB	id:	VHN-402708
db:	JVNDB	id:	JVNDB-2021-021169
db:	CNNVD	id:	CNNVD-202110-071
db:	NVD	id:	CVE-2021-41530

LAST UPDATE DATE

2024-11-23T23:07:36.117000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-402708	date:	2021-10-12T00:00:00
db:	JVNDB	id:	JVNDB-2021-021169	date:	2024-07-18T02:42:00
db:	CNNVD	id:	CNNVD-202110-071	date:	2021-10-14T00:00:00
db:	NVD	id:	CVE-2021-41530	date:	2024-11-21T06:26:21.343

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-402708	date:	2021-10-04T00:00:00
db:	JVNDB	id:	JVNDB-2021-021169	date:	2024-07-18T00:00:00
db:	CNNVD	id:	CNNVD-202110-071	date:	2021-10-04T00:00:00
db:	NVD	id:	CVE-2021-41530	date:	2021-10-04T17:15:08.577