CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
PARTIAL
AV:A/AC:L/Au:S/C:C/I:C/A:P
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L
AI Score
Confidence
High
EPSS
Percentile
12.6%
Check Point Security Management’s Internal CA web management before Jumbo HFAs R80.10 Take 278, R80.20 Take 160, R80.30 Take 210, and R80.40 Take 38, can be manipulated to run commands as a high privileged user or crash, due to weak input validation on inputs by a trusted management administrator.
Vendor | Product | Version | CPE |
---|---|---|---|
checkpoint | ica_management_portal | * | cpe:2.3:a:checkpoint:ica_management_portal:*:*:*:*:*:*:*:* |
checkpoint | ica_management_portal | r80.20 | cpe:2.3:a:checkpoint:ica_management_portal:r80.20:-:*:*:*:*:*:* |
checkpoint | ica_management_portal | r80.20 | cpe:2.3:a:checkpoint:ica_management_portal:r80.20:take_156:*:*:*:*:*:* |
checkpoint | ica_management_portal | r80.30 | cpe:2.3:a:checkpoint:ica_management_portal:r80.30:-:*:*:*:*:*:* |
checkpoint | ica_management_portal | r80.30 | cpe:2.3:a:checkpoint:ica_management_portal:r80.30:take_200:*:*:*:*:*:* |
checkpoint | ica_management_portal | r80.40 | cpe:2.3:a:checkpoint:ica_management_portal:r80.40:-:*:*:*:*:*:* |
checkpoint | ica_management_portal | r80.10 | cpe:2.3:a:checkpoint:ica_management_portal:r80.10:-:*:*:*:*:*:* |
[
{
"product": "ICA Management Portal",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "before JHFs R80.20 Take 160, R80.30 Take 210, and R80.40 Take 38"
}
]
}
]
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
PARTIAL
AV:A/AC:L/Au:S/C:C/I:C/A:P
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L
AI Score
Confidence
High
EPSS
Percentile
12.6%