CVSS: 7.8EPSS: 9%CPEs: 1EXPL: 0CVE-2022-23745
https://notcve.org/view.php?id=CVE-2022-23745
18 Jul 2022 — A potential memory corruption issue was found in Capsule Workspace Android app (running on GrapheneOS). This could result in application crashing but could not be used to gather any sensitive information. Se ha encontrado un posible problema de corrupción de memoria en la aplicación Capsule Workspace para Android (que es ejecutada en GrapheneOS). Esto podría resultar en un bloqueo de la aplicación, pero no podría ser usado para recoger cualquier información confidencial • https://supportcenter.us.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk179646 • CWE-787: Out-of-bounds Write CWE-1218: Memory Buffer Errors •
CVSS: 2.3EPSS: 2%CPEs: 14EXPL: 0CVE-2022-23744
https://notcve.org/view.php?id=CVE-2022-23744
07 Jul 2022 — Check Point Endpoint before version E86.50 failed to protect against specific registry change which allowed to disable endpoint protection by a local administrator. Check Point Endpoint antes de la versión E86.50 no protegía contra un cambio específico en el registro que permitía desactivar la protección de los puntos finales por un administrador local • https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk179609 • CWE-470: Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') •
CVSS: 7.8EPSS: 4%CPEs: 2EXPL: 0CVE-2022-23742
https://notcve.org/view.php?id=CVE-2022-23742
12 May 2022 — Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports from a directory with low privileges. An attacker can replace those files with malicious or linked content, such as exploiting CVE-2020-0896 on unpatched systems or using symbolic links. Check Point Endpoint Security Client para Windows versiones anteriores a E86.40, copian archivos para informes forenses desde un directorio con privilegios bajos. Un atacante puede reemplazar esos archivos con cont... • https://supportcontent.checkpoint.com/solutions?id=sk178665%2C • CWE-59: Improper Link Resolution Before File Access ('Link Following') CWE-65: Windows Hard Link •
CVSS: 6.9EPSS: 6%CPEs: 5EXPL: 0CVE-2021-30361
https://notcve.org/view.php?id=CVE-2021-30361
11 May 2022 — The Check Point Gaia Portal's GUI Clients allowed authenticated administrators with permission for the GUI Clients settings to inject a command that would run on the Gaia OS. Los Clientes GUI del Portal Gaia de Check Point permitían a administradores autenticados con permiso para la configuración de los Clientes GUI inyectar un comando que sería ejecutado en el Sistema Operativo Gaia • https://supportcontent.checkpoint.com/solutions?id=sk179128 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-23743
https://notcve.org/view.php?id=CVE-2022-23743
11 May 2022 — Check Point ZoneAlarm before version 15.8.200.19118 allows a local actor to escalate privileges during the upgrade process. In addition, weak permissions in the ProgramData\CheckPoint\ZoneAlarm\Data\Updates directory allow a local attacker the ability to execute an arbitrary file write, leading to execution of code as local system, in ZoneAlarm versions before v15.8.211.192119 Check Point ZoneAlarm versiones anteriores a 15.8.200.19118, permite a un actor local escalar privilegios durante el proceso de actu... • https://www.zonealarm.com/software/extreme-security/release-history • CWE-269: Improper Privilege Management CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2021-30360
https://notcve.org/view.php?id=CVE-2021-30360
07 Jan 2022 — Users have access to the directory where the installation repair occurs. Since the MS Installer allows regular users to run the repair, an attacker can initiate the installation repair and place a specially crafted EXE in the repair folder which runs with the Check Point Remote Access Client privileges. Los usuarios tienen acceso al directorio donde se produce la reparación de la instalación. Dado que el instalador de MS permite a usuarios normales ejecutar la reparación, un atacante puede iniciar la repara... • https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0001/MNDT-2022-0001.md • CWE-427: Uncontrolled Search Path Element •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2021-30359
https://notcve.org/view.php?id=CVE-2021-30359
22 Oct 2021 — The Harmony Browse and the SandBlast Agent for Browsers installers must have admin privileges to execute some steps during the installation. Because the MS Installer allows regular users to repair their installation, an attacker running an installer before 90.08.7405 can start the installation repair and place a specially crafted binary in the repair folder, which runs with the admin privileges. Los instaladores de Harmony Browse y SandBlast Agent for Browsers deben tener privilegios de administrador para e... • https://github.com/mandiant/Vulnerability-Disclosures/blob/master/MNDT-2021-0007/MNDT-2021-0007.md • CWE-427: Uncontrolled Search Path Element •
CVSS: 7.2EPSS: 0%CPEs: 5EXPL: 0CVE-2021-30358
https://notcve.org/view.php?id=CVE-2021-30358
19 Oct 2021 — Mobile Access Portal Native Applications who's path is defined by the administrator with environment variables may run applications from other locations by the Mobile Access Portal Agent. Las Aplicaciones Nativas del Portal de Acceso Móvil cuya ruta está definida por el administrador con variables de entorno pueden ejecutar aplicaciones desde otras ubicaciones por el agente del portal de acceso móvil • https://supportcontent.checkpoint.com/solutions?id=sk142952 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 5.3EPSS: 27%CPEs: 5EXPL: 1CVE-2021-30357
https://notcve.org/view.php?id=CVE-2021-30357
08 Jun 2021 — SSL Network Extender Client for Linux before build 800008302 reveals part of the contents of the configuration file supplied, which allows partially disclosing files to which the user did not have access. SSL Network Extender Client para Linux versiones build anteriores a 800008302, revela parte del contenido del archivo de configuración suministrado, lo que permite divulgar parcialmente archivos a los que el usuario no tenía acceso • https://github.com/joaovarelas/CVE-2021-30357_CheckPoint_SNX_VPN_PoC • CWE-209: Generation of Error Message Containing Sensitive Information •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 0CVE-2021-30356
https://notcve.org/view.php?id=CVE-2021-30356
22 Apr 2021 — A denial of service vulnerability was reported in Check Point Identity Agent before R81.018.0000, which could allow low privileged users to overwrite protected system files. Se reportó una vulnerabilidad de Denegación de Servicio en Check Point Identity Agent versiones anteriores a R81.018.0000, que podría permitir a usuarios poco privilegiados sobrescribir archivos protegidos del sistema • https://supportcontent.checkpoint.com/solutions?id=sk134312 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •