Lucene search
+L

50 matches found

CheckPoint Security
CheckPoint Security
added 2022/05/11 12:0 a.m.25 views

Check Point Response to CVE-2022-23742 - local privileges escalation in Endpoint Security Client's EFRService

Symptoms - The EFRService, which collects forensics data for various blades for the Check Point Endpoint Security Client for Windows, copies files for forensics reports from a directory with insufficient privileges. A local attacker can replace those files with malicious or linked content, which...

7.8CVSS7.5AI score0.04076EPSS
Exploits0
OSV
OSV
added 2020/12/03 2:15 p.m.6 views

CVE-2020-6021

Check Point Endpoint Security Client for Windows before version E84.20 allows write access to the directory from which the installation repair takes place. Since the MS Installer allows regular users to run the repair, an attacker can initiate the installation repair and place a specially crafted...

7.8CVSS7.1AI score0.003EPSS
Exploits0References1
CNNVD
CNNVD
added 2020/12/02 12:0 a.m.7 views

Check Point Endpoint Security Client Code Issue Vulnerability

Check Point Endpoint Security Client is an endpoint security protection software from Check Point, Israel. A code issue vulnerability exists in Check Point Endpoint Security Client, no information about this vulnerability is available at this time, please stay tuned to CNNVD or vendor announcemen...

7.8CVSS7.2AI score0.003EPSS
Exploits0References3
OSV
OSV
added 2020/11/02 9:15 p.m.5 views

CVE-2020-6014

Check Point Endpoint Security Client for Windows, with Anti-Bot or Threat Emulation blades installed, before version E83.20, tries to load a non-existent DLL during a query for the Domain Name. An attacker with administrator privileges can leverage this to gain code execution within a Check Point...

6.5CVSS7AI score0.00372EPSS
Exploits0References1
OSV
OSV
added 2019/12/23 7:15 p.m.5 views

CVE-2019-8463

A denial of service vulnerability was reported in Check Point Endpoint Security Client for Windows before E82.10, that could allow service log file to be written to non-standard locations...

7.5CVSS5.8AI score0.01209EPSS
Exploits0References1
NVD
NVD
added 2019/12/23 7:15 p.m.20 views

CVE-2019-8463

A denial of service vulnerability was reported in Check Point Endpoint Security Client for Windows before E82.10, that could allow service log file to be written to non-standard locations...

7.5CVSS7.4AI score0.01209EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/12/17 12:0 a.m.11 views

The vulnerability of clients of Check Point Endpoint Security’s comprehensive network endpoint protection solution, specifically for Windows and ZoneAlarm firewalls, stems from permission handling errors. This allows attackers to escalate their privileges.

The vulnerability of Check Point Endpoint Security Initial Client for Windows and ZoneAlarm, a network firewall, relates to permission handling errors. Exploiting this vulnerability can allow attackers to enhance their privileges through hard links from registration file archives...

7.8CVSS6.6AI score0.01038EPSS
Exploits5References5Affected Software1
exploitpack
exploitpack
added 2019/10/07 12:0 a.m.55 views

CheckPoint Endpoint Security ClientZoneAlarm 15.4.062.17802 - Privilege Escalation

CheckPoint Endpoint Security ClientZoneAlarm 15.4.062.17802 - Privilege Escalation Exploit Title: CheckPoint Endpoint Security Client/ZoneAlarm 15.4.062.17802 - Privilege Escalation Date: 2019-01-30 Exploit Author: Jakub Palaczynski Vendor Homepage: https://www.checkpoint.com/ Version: Check Poin...

4.6CVSS0.3AI score0.01038EPSS
Exploits5
OSV
OSV
added 2019/08/29 9:15 p.m.4 views

CVE-2019-8461

Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoint Client installed. An attacker can leverage this to gain LPE using a specially crafted DLL placed in any PATH location accessible with...

7.8CVSS7.2AI score0.01124EPSS
Exploits1References2
NVD
NVD
added 2019/08/29 9:15 p.m.22 views

CVE-2019-8461

Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoint Client installed. An attacker can leverage this to gain LPE using a specially crafted DLL placed in any PATH location accessible with...

7.8CVSS7.7AI score0.01124EPSS
Exploits1References2
Prion
Prion
added 2019/08/29 9:15 p.m.15 views

Path traversal

Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoint Client installed. An attacker can leverage this to gain LPE using a specially crafted DLL placed in any PATH location accessible with...

6.8CVSS7.7AI score0.01124EPSS
Exploits1References2Affected Software3
CNVD
CNVD
added 2019/08/29 12:0 a.m.6 views

Check Point Endpoint Security Initial Client for Windows Elevation of Privilege Vulnerability

Check Point Endpoint Security Initial Client for Windows is a Windows-based client application for Check Point Endpoint Security endpoint security management software from Check Point Israel. An elevation of privilege vulnerability exists in versions of Check Point Endpoint Security Initial Clien...

7.8CVSS7AI score0.01124EPSS
Exploits1References1
CNVD
CNVD
added 2019/06/24 12:0 a.m.3 views

Unspecified Vulnerability in Check Point Endpoint Security Clien

Check Point Endpoint Security Client is an endpoint security protection software from Check Point Israel. A security vulnerability exists in versions of Check Point Endpoint Security Client prior to E80.83 for Windows-based platforms. An attacker can exploit this vulnerability to cause the user t...

9.8CVSS6.7AI score0.01191EPSS
Exploits0References1
OSV
OSV
added 2019/06/20 5:15 p.m.4 views

CVE-2019-8459

Check Point Endpoint Security Client for Windows, with the VPN blade, before version E80.83, starts a process without using quotes in the path. This can cause loading of a previously placed executable with a name similar to the parts of the path, instead of the intended one...

9.8CVSS7.3AI score0.01191EPSS
Exploits0References1
Prion
Prion
added 2019/04/29 4:29 p.m.18 views

Hardcoded credentials

A local attacker can create a hard-link between a file to which the Check Point Endpoint Security client for Windows before E80.96 writes and another BAT file, then by impersonating the WPAD server, the attacker can write BAT commands into that file that will later be run by the user or the syste...

6.9CVSS6.8AI score0.00326EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/04/29 3:10 p.m.17 views

CVE-2019-8454

A local attacker can create a hard-link between a file to which the Check Point Endpoint Security client for Windows before E80.96 writes and another BAT file, then by impersonating the WPAD server, the attacker can write BAT commands into that file that will later be run by the user or the syste...

6.9AI score0.00326EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/04/22 9:43 p.m.55 views

CVE-2019-8452

A hard-link created from log file archive of Check Point ZoneAlarm up to 15.4.062 or Check Point Endpoint Security client for Windows before E80.96 to any file on the system will get its permission changed so that all users can access that linked file. Doing this on files with limited access gain...

7.5AI score0.01038EPSS
Exploits5References3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

Check Point Endpoint Security Full Disk Encryption RDP Connection Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/36315/info Check Point Software Endpoint Security Full Disk Encryption for Microsoft Windows is prone to a remote denial-of-service vulnerability. Exploiting this issue will allow attackers to crash the affected computer,...

7.1AI score
Exploits0
NVD
NVD
added 2013/11/30 11:43 a.m.22 views

CVE-2013-5635

Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not properly maintain the state of password failures, which makes it easier for physically proximate attackers to bypass the device-locking protection mechanism by entering password guesses within multiple Unlock.e...

3.3CVSS6.7AI score0.00207EPSS
Exploits0References2
NVD
NVD
added 2013/11/30 11:43 a.m.19 views

CVE-2013-5636

Unlock.exe in Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not associate password failures with a device ID, which makes it easier for physically proximate attackers to bypass the device-locking protection mechanism by overwriting DVREM.EPM with a copy of...

3.3CVSS6.6AI score0.00196EPSS
Exploits0References2
Rows per page
Query Builder