Security Advisory: Email Security Postfix Misconfiguration (CVE-2019-6140)

Summary

Details about the postfix misconfiguration vulnerability in Forcepoint Email Security versions 8.4.x and 8.5.x. Take the actions recommended in this article immediately to mitigate this issue.

Information

A configuration issue has been discovered in Forcepoint Email Security 8.4.x and 8.5.x: the product is left in a vulnerable state if the hybrid registration process is not completed.

Resolution

This vulnerability has been resolved in the following hotfixes:

• For Email Security v8.4.x, please install Hotfix 127
• For Email Security v8.5.x, please install Hotfix 003