Unrated severityNVD Advisory· Published Jan 6, 2026· Updated Jan 6, 2026

Vulnerable Python version used in Forcepoint One DLP Client

CVE-2025-14026

Description

Forcepoint One DLP Client, version 23.04.5642 (and possibly newer versions), includes a restricted version of Python 2.5.4 that prevents use of the ctypes library. ctypes is a foreign function interface (FFI) for Python, enabling calls to DLLs/shared libraries, memory allocation, and direct code execution. It was demonstrated that these restrictions could be bypassed.

Affected products

Forcepoint/One DLP Clientllm-create
Range: 23.04.5642
Forcepoint/Forcepoint One Endpoint (F1E)v5
Range: 23.11

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

kb.cert.org/vuls/id/420440mitre
support.forcepoint.com/s/article/000042256mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000