Lucene search

[email protected]NVD:CVE-2023-28133

HistoryJul 23, 2023 - 10:15 a.m.

CVE-2023-28133

2023-07-2310:15:09

CWE-732

[email protected]

web.nvd.nist.gov

cve-2023-28133

crafted openssl configuration

version e87.30

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

22.6%

JSON

Local privilege escalation in Check Point Endpoint Security Client (version E87.30) via crafted OpenSSL configuration file

Affected configurations

Nvd

Node

checkpointendpoint_securityMatche87.30windows

VendorProductVersionCPE
checkpointendpoint_securitye87.30cpe:2.3:a:checkpoint:endpoint_security:e87.30:*:*:*:*:windows:*:*

Vendor	Product	Version	CPE
checkpoint	endpoint_security	e87.30	cpe:2.3:a:checkpoint:endpoint_security:e87.30:::::windows::

References

support.checkpoint.com/results/sk/sk181276

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

22.6%

JSON

Related for NVD:CVE-2023-28133

prion1 cvelist1 cve1