Forcepoint NGFW Engine Allows Local Privilege Escalation

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.3

Forcepoint NGFW Engine Allows Local Privilege Escalation

CVE-2025-12690

Summary

A security weakness in the Forcepoint Network Gateway Firewall Engine allows an attacker with local access to gain elevated privileges on the system. This could potentially be exploited to take control of the system. Fixing this issue requires updating the NGFW Engine to a version that is not affected.

Original title

Execution with unnecessary privileges in Forcepoint NGFW Engine allows local privilege escalation.This issue affects NGFW Engine through 6.10.19, through 7.3.0, through 7.2.4, through 7.1.10.

Original description

Execution with unnecessary privileges in Forcepoint NGFW Engine allows local privilege escalation.This issue affects NGFW Engine through 6.10.19, through 7.3.0, through 7.2.4, through 7.1.10.

nvd CVSS4.0 7.3

Vulnerability type

CWE-250

https://support.forcepoint.com/s/article/Security-Advisory-Local-Privilege-Escal...

Published: 11 Mar 2026 · Updated: 13 Mar 2026 · First seen: 11 Mar 2026