Description
Improper Neutralization of Input During Web Page Generation in Forcepoint Web Security (On-Prem) on Windows allows Stored XSS.This issue affects Web Security through 8.5.6.
Published: 2026-03-16
Score: 4.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Stored XSS
Action: Patch Now
AI Analysis

Impact

The vulnerability is an Improper Neutralization of Input During Web Page Generation that results in Stored Cross‑Site Scripting (CWE‑79). It allows an attacker to inject malicious script content that is stored and later presented to users in the web interface, potentially causing the script to execute in the browsers of users who view the affected page. The resulting impact includes the possibility of session hijacking, data theft, or defacement of the web interface, depending on the privileges of the user accessing the malicious content.

Affected Systems

Forcepoint Web Security (On‑Prem) on Windows is affected for all versions up to and including 8.5.6. The vendor explicitly states that the issue does not exist in version 8.5.7 or newer.

Risk and Exploitability

The CVSS score of 4.8 indicates moderate severity; no EPSS score is available and the vulnerability is not listed in CISA’s KEV catalog, suggesting no publicly known exploitation in the wild. Based on the description, the likely attack vector is through a web interface that accepts user‑supplied data and stores it pending rendering, implying that an attacker would need either authenticated access to the management console or an ability to submit content that is later served to users. The exploit would work only if the vulnerable stored content is displayed to a victim’s browser.

Generated by OpenCVE AI on March 17, 2026 at 11:21 UTC.

Remediation

Vendor Solution

Fixed in 8.5.7

OpenCVE Recommended Actions

  • Upgrade Forcepoint Web Security to version 8.5.7 or later to receive the fix.
  • Verify that the upgrade is successful and test that the web management console no longer allows the injection of arbitrary script content.
  • If upgrading is not immediately possible, monitor the system for suspicious input and consider disabling any feature that allows user‑supplied content from being stored and displayed.

Generated by OpenCVE AI on March 17, 2026 at 11:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 17 Mar 2026 10:00:00 +0000

Type Values Removed Values Added
First Time appeared Forcepoint
Forcepoint web Security
Vendors & Products Forcepoint
Forcepoint web Security

Mon, 16 Mar 2026 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 16 Mar 2026 15:15:00 +0000

Type Values Removed Values Added
Description Improper Neutralization of Input During Web Page Generation in Forcepoint Web Security (On-Prem) on Windows allows Stored XSS.This issue affects Web Security through 8.5.6.
Title Stored Cross Site Scripting in Forcepoint Web Security
Weaknesses CWE-79
References
Metrics cvssV4_0

{'score': 4.8, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Forcepoint Web Security
cve-icon MITRE

Status: PUBLISHED

Assigner: forcepoint

Published:

Updated: 2026-03-16T18:36:51.535Z

Reserved: 2025-03-13T07:59:18.904Z

Link: CVE-2025-2274

cve-icon Vulnrichment

Updated: 2026-03-16T18:36:47.373Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-03-16T15:16:17.697

Modified: 2026-03-17T14:20:01.670

Link: CVE-2025-2274

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-03-24T10:44:19Z

Weaknesses