Lucene search

CheckpointCVE-2022-23742

HistoryMay 12, 2022 - 8:15 p.m.

CVE-2022-23742

2022-05-1220:15:15

CWE-65

CWE-59

checkpoint

web.nvd.nist.gov

cve-2022-23742

check point

endpoint security

windows

vulnerability

nvd

exploitation

symbolic links

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.4

Confidence

High

EPSS

Percentile

12.6%

JSON

Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports from a directory with low privileges. An attacker can replace those files with malicious or linked content, such as exploiting CVE-2020-0896 on unpatched systems or using symbolic links.

Affected configurations

Nvd

Node

microsoftwindowsMatch-

AND

checkpointendpoint_securityRange<e86.40

VendorProductVersionCPE
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
checkpointendpoint_security*cpe:2.3:a:checkpoint:endpoint_security:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	windows	-	cpe:2.3:o:microsoft:windows:-:::::::*
checkpoint	endpoint_security	*	cpe:2.3:a:checkpoint:endpoint_security::::::::

CNA Affected

[
  {
    "product": "Check Point Endpoint Security Client for Windows",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "before E86.40"
      }
    ]
  }
]