Lucene search
K

6 matches found

OSV
OSV
added 2026/01/06 3:15 p.m.7 views

CVE-2025-14026

Forcepoint One DLP Client, version 23.04.5642 and possibly newer versions, includes a restricted version of Python 2.5.4 that prevents use of the ctypes library. ctypes is a foreign function interface FFI for Python, enabling calls to DLLs/shared libraries, memory allocation, and direct code...

7.8CVSS5.9AI score0.00178EPSS
Exploits0References3
NVD
NVD
added 2026/01/06 3:15 p.m.5 views

CVE-2025-14026

Forcepoint One DLP Client, version 23.04.5642 and possibly newer versions, includes a restricted version of Python 2.5.4 that prevents use of the ctypes library. ctypes is a foreign function interface FFI for Python, enabling calls to DLLs/shared libraries, memory allocation, and direct code...

7.8CVSS0.00178EPSS
Exploits0References3
CVE
CVE
added 2026/01/06 2:45 p.m.17 views

CVE-2025-14026

Summary (CVE-2025-14026): Forcepoint One DLP Client (version 23.04.5642 and potentially newer) ships with a restricted Python 2.5.4 runtime that blocks ctypes (FFI). The restriction was shown to be bypassable by reintroducing ctypes support, enabling potential arbitrary code execution via DLLs/me...

7.8CVSS7.2AI score0.00178EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/01/06 2:45 p.m.24 views

CVE-2025-14026 Vulnerable Python version used in Forcepoint One DLP Client

Forcepoint One DLP Client, version 23.04.5642 and possibly newer versions, includes a restricted version of Python 2.5.4 that prevents use of the ctypes library. ctypes is a foreign function interface FFI for Python, enabling calls to DLLs/shared libraries, memory allocation, and direct code...

0.00178EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/06 2:45 p.m.4 views

CVE-2025-14026 Vulnerable Python version used in Forcepoint One DLP Client

Forcepoint One DLP Client, version 23.04.5642 and possibly newer versions, includes a restricted version of Python 2.5.4 that prevents use of the ctypes library. ctypes is a foreign function interface FFI for Python, enabling calls to DLLs/shared libraries, memory allocation, and direct code...

7.2AI score0.00178EPSS
Exploits0References2
CERT
CERT
added 2026/01/06 12:0 a.m.8 views

Vulnerable Python version used in Forcepoint One DLP Client

Overview A vulnerability in the Forcepoint One DLP Client allows bypass of the vendor-implemented Python restrictions designed to prevent arbitrary code execution. By reconstructing the ctypes FFI environment and applying a version-header patch to the ctypes.pyd module, an attacker can restore...

7.8CVSS8AI score0.00178EPSS
Exploits0References1
Rows per page
Query Builder