{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-12690", "assignerOrgId": "e23ea22c-8c39-4eff-8980-2881e5ae54e2", "state": "PUBLISHED", "assignerShortName": "forcepoint", "dateReserved": "2025-11-04T10:07:46.152Z", "datePublished": "2026-03-11T15:36:32.755Z", "dateUpdated": "2026-03-11T16:10:28.588Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "e23ea22c-8c39-4eff-8980-2881e5ae54e2", "shortName": "forcepoint", "dateUpdated": "2026-03-11T15:36:32.755Z"}, "title": "Local Privilege Escalation in NGFW Engine", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-250", "description": "CWE-250 Execution with unnecessary privileges", "type": "CWE"}]}], "impacts": [{"capecId": "CAPEC-233", "descriptions": [{"lang": "en", "value": "CAPEC-233 Privilege Escalation"}]}, {"capecId": "CAPEC-122", "descriptions": [{"lang": "en", "value": "CAPEC-122 Privilege Abuse"}]}], "affected": [{"vendor": "Forcepoint", "product": "NGFW Engine", "platforms": ["Linux"], "versions": [{"status": "affected", "version": "0", "lessThanOrEqual": "6.10.19", "versionType": "semver"}, {"status": "affected", "version": "0", "lessThanOrEqual": "7.3.0", "versionType": "semver"}, {"status": "affected", "version": "0", "lessThanOrEqual": "7.2.4", "versionType": "semver"}, {"status": "affected", "version": "0", "lessThanOrEqual": "7.1.10", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "Execution with unnecessary privileges in Forcepoint NGFW Engine allows local privilege escalation.This issue affects NGFW Engine through 6.10.19,\u00a0through 7.3.0, through 7.2.4, through 7.1.10.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "Execution with unnecessary privileges in Forcepoint NGFW Engine allows local privilege escalation.<p>This issue affects NGFW Engine through 6.10.19,&nbsp;through 7.3.0, through 7.2.4, through 7.1.10.</p>"}]}], "references": [{"url": "https://support.forcepoint.com/s/article/Security-Advisory-Local-Privilege-Escalation-in-NGFW-Engine"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV4_0": {"attackVector": "LOCAL", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "privilegesRequired": "LOW", "userInteraction": "NONE", "vulnConfidentialityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subIntegrityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "version": "4.0", "baseSeverity": "HIGH", "baseScore": 7.3, "vectorString": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"}}], "solutions": [{"lang": "en", "value": "Upgrade to versions 6.10.20, 7.1.11, 7.2.5 and 7.3.1.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<span>Upgrade to versions 6.10.20, 7.1.11, 7.2.5 and 7.3.1.</span>"}]}], "credits": [{"lang": "en", "value": "Francesco Caserta, Andrea Lomuscio and Alessandro Ruggieri of the Italian National Cybersecurity Agency", "type": "finder"}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-11T16:10:07.438779Z", "id": "CVE-2025-12690", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-11T16:10:28.588Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-12690", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-11T16:10:07.438779Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-11T16:10:25.394Z"}}], "cna": {"title": "Local Privilege Escalation in NGFW Engine", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "finder", "value": "Francesco Caserta, Andrea Lomuscio and Alessandro Ruggieri of the Italian National Cybersecurity Agency"}], "impacts": [{"capecId": "CAPEC-233", "descriptions": [{"lang": "en", "value": "CAPEC-233 Privilege Escalation"}]}, {"capecId": "CAPEC-122", "descriptions": [{"lang": "en", "value": "CAPEC-122 Privilege Abuse"}]}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 7.3, "Automatable": "NOT_DEFINED", "attackVector": "LOCAL", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "privilegesRequired": "LOW", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Forcepoint", "product": "NGFW Engine", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "6.10.19"}, {"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "7.3.0"}, {"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "7.2.4"}, {"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "7.1.10"}], "platforms": ["Linux"], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "Upgrade to versions 6.10.20, 7.1.11, 7.2.5 and 7.3.1.", "supportingMedia": [{"type": "text/html", "value": "<span>Upgrade to versions 6.10.20, 7.1.11, 7.2.5 and 7.3.1.</span>", "base64": false}]}], "references": [{"url": "https://support.forcepoint.com/s/article/Security-Advisory-Local-Privilege-Escalation-in-NGFW-Engine"}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "Execution with unnecessary privileges in Forcepoint NGFW Engine allows local privilege escalation.This issue affects NGFW Engine through 6.10.19,\u00a0through 7.3.0, through 7.2.4, through 7.1.10.", "supportingMedia": [{"type": "text/html", "value": "Execution with unnecessary privileges in Forcepoint NGFW Engine allows local privilege escalation.<p>This issue affects NGFW Engine through 6.10.19,&nbsp;through 7.3.0, through 7.2.4, through 7.1.10.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-250", "description": "CWE-250 Execution with unnecessary privileges"}]}], "providerMetadata": {"orgId": "e23ea22c-8c39-4eff-8980-2881e5ae54e2", "shortName": "forcepoint", "dateUpdated": "2026-03-11T15:36:32.755Z"}}}, "cveMetadata": {"cveId": "CVE-2025-12690", "state": "PUBLISHED", "dateUpdated": "2026-03-11T16:10:28.588Z", "dateReserved": "2025-11-04T10:07:46.152Z", "assignerOrgId": "e23ea22c-8c39-4eff-8980-2881e5ae54e2", "datePublished": "2026-03-11T15:36:32.755Z", "assignerShortName": "forcepoint"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:forcepoint:next_generation_firewall:*:*:*:*:*:*:*:*", "matchCriteriaId": "3C76ADDD-AC10-4FBD-A2F4-34B9DBD03429", "versionEndExcluding": "6.10.20", "vulnerable": true}, {"criteria": "cpe:2.3:a:forcepoint:next_generation_firewall:*:*:*:*:*:*:*:*", "matchCriteriaId": "288B59E0-96C4-4311-B0C0-E5B6753A061F", "versionEndExcluding": "7.1.11", "versionStartIncluding": "7.1.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:forcepoint:next_generation_firewall:*:*:*:*:*:*:*:*", "matchCriteriaId": "EB9E7B0C-8D34-4067-AF2C-0C3040F2DC06", "versionEndExcluding": "7.2.5", "versionStartIncluding": "7.2.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:forcepoint:next_generation_firewall:7.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "A6C1E3CA-DF77-4025-B934-E4DFC2768954", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Execution with unnecessary privileges in Forcepoint NGFW Engine allows local privilege escalation.This issue affects NGFW Engine through 6.10.19,\u00a0through 7.3.0, through 7.2.4, through 7.1.10."}, {"lang": "es", "value": "Ejecuci\u00f3n con privilegios innecesarios en el Motor NGFW de Forcepoint permite la escalada de privilegios local. Este problema afecta al Motor NGFW hasta la versi\u00f3n 6.10.19, hasta la 7.3.0, hasta la 7.2.4, hasta la 7.1.10."}], "id": "CVE-2025-12690", "lastModified": "2026-05-07T20:55:29.093", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "attackVector": "LOCAL", "availabilityRequirement": "NOT_DEFINED", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "psirt@forcepoint.com", "type": "Secondary"}]}, "published": "2026-03-11T16:16:18.233", "references": [{"source": "psirt@forcepoint.com", "tags": ["Vendor Advisory"], "url": "https://support.forcepoint.com/s/article/Security-Advisory-Local-Privilege-Escalation-in-NGFW-Engine"}], "sourceIdentifier": "psirt@forcepoint.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-250"}], "source": "psirt@forcepoint.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": ["linux"], "status": "affected", "versions": {"scheme": "semver", "value": "[0,6.10.19]"}}, {"platform": ["linux"], "status": "affected", "versions": {"scheme": "semver", "value": "[0,7.3.0]"}}, {"platform": ["linux"], "status": "affected", "versions": {"scheme": "semver", "value": "[0,7.2.4]"}}, {"platform": ["linux"], "status": "affected", "versions": {"scheme": "semver", "value": "[0,7.1.10]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "NGFW Engine", "source": "cna", "vendor": "Forcepoint"}, "product": "ngfw_engine", "vendor": "forcepoint"}], "created": "2026-03-12T10:05:41.878107+00:00", "updated": "2026-05-07T23:30:40.465594+00:00", "vendors": ["forcepoint", "forcepoint$PRODUCT$ngfw_engine"]}