Security Enhancements

There is an on-going effort to improve the security of Forcepoint products. To that end, Forcepoint Security Labs Analysts continually assess potential security vulnerabilities which can be introduced by third-party libraries. Security improvements have been made in several areas.
Description References Date

In the Forcepoint CSG Portal, improper neutralization of the special elements used in the SQL command (SQL Injection Vulnerability) allows a blind SQL injection on the Web Security Cloud and Email Security Cloud in certain circumstances.

Blind SQL Injection Vulnerability

12-Jun-2023

Improper handling of input during generation of a web page

Cross-site Scripting (XSS) vulnerability

29-Mar-2023