Lucene search
K

24 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-17292

Malware in sbrugna...

6.9CVSS6.6AI score0.04361EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-31841

Malicious code in bioql PyPI...

7.2CVSS7AI score0.21381EPSS
Exploits3References5
RedhatCVE
RedhatCVE
added 2025/05/23 6:2 a.m.5 views

CVE-2023-28130

Local user may lead to privilege escalation using Gaia Portal hostnames page...

7.2CVSS7.1AI score0.21381EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:39 p.m.8 views

CVE-2021-30361

The Check Point Gaia Portal's GUI Clients allowed authenticated administrators with permission for the GUI Clients settings to inject a command that would run on the Gaia OS...

6.9CVSS6.8AI score0.04361EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/07 12:0 a.m.5 views

Check Point Gaia Portal 安全漏洞

Check Point Gaia Portal is a web-based advanced interface for Gaia platform configuration from Check Point Israel. A security vulnerability exists in Check Point Gaia Portal that originates from an authenticated user being able to inject code or commands using global variables via a special HTTP...

8CVSS6.9AI score0.00396EPSS
Exploits0References2
CheckPoint Security
CheckPoint Security
added 2024/10/08 12:0 a.m.15 views

Check Point Response to CVE-2024-24914 - TCL substitution of global parameter values

Symptoms - After logging in to Gaia Portal, authenticated users local Gaia users and RADIUS / TACACS users may cause code injection in Gaia Portal because of unprotected global variables usage when processing the HTTP request in the TCL process. This issue received the ID CVE-2024-24914. Solution...

8CVSS7.4AI score0.00396EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/08/08 12:0 a.m.5 views

The vulnerability of the cgi-bin/hosts_dns.tcl component of the Gaia Portal web interface allows a perpetrator to execute arbitrary commands on the Quantum Security Gateways and Quantum Appliances operating systems.

The vulnerability of the cgi-bin/hostsdns.tcl web interface for configuring the Gaia Portal on the operating system of Quantum Security Gateways and Quantum Appliances is related to the failure to eliminate special elements used in the operating system’s command processing when handling the...

8.5CVSS7.4AI score0.21381EPSS
Exploits3References5
0day.today
0day.today
added 2023/08/02 12:0 a.m.491 views

Checkpoint Gaia Portal R81.10 Remote Command Execution Vulnerability

========================= Exploit Title: Hostname injection leads to Remote Code Execution RCE Authenticated Product: Gaia Portal Vendor: Checkpoint Vulnerable Versions: R81.20 Take 14, R81.10 Take 95, R81 Take 82 and R80.40 Take 198 Tested Version: R81.10 take 335 Advisory Publication: July 27,...

7.2CVSS7.1AI score0.21381EPSS
Exploits3
Packet Storm
Packet Storm
added 2023/08/02 12:0 a.m.574 views

Checkpoint Gaia Portal R81.10 Remote Command Execution

========================= Exploit Title: Hostname injection leads to Remote Code Execution RCE Authenticated Product: Gaia Portal Vendor: Checkpoint Vulnerable Versions: R81.20 Take 14, R81.10 Take 95, R81 Take 82 and R80.40 Take 198 Tested Version: R81.10 take 335 Advisory Publication: July 27,...

7.1AI score0.21381EPSS
Exploits3
OSV
OSV
added 2023/07/26 11:15 a.m.5 views

CVE-2023-28130

Local user may lead to privilege escalation using Gaia Portal hostnames page...

7.2CVSS5.8AI score0.21381EPSS
Exploits3References5
NVD
NVD
added 2023/07/26 11:15 a.m.46 views

CVE-2023-28130

Local user may lead to privilege escalation using Gaia Portal hostnames page...

7.2CVSS7.2AI score0.21381EPSS
Exploits3References5
Prion
Prion
added 2023/07/26 11:15 a.m.19 views

Privilege escalation

Local user may lead to privilege escalation using Gaia Portal hostnames page...

5.8CVSS7.1AI score0.21381EPSS
Exploits3References5Affected Software1
Cvelist
Cvelist
added 2023/07/26 10:57 a.m.40 views

CVE-2023-28130

Local user may lead to privilege escalation using Gaia Portal hostnames page...

7.4AI score0.21381EPSS
Exploits3References5
CVE
CVE
added 2023/07/26 10:57 a.m.162 views

CVE-2023-28130

CVE-2023-28130 affects Check Point Gaia Portal. The root cause is improper handling of the hostname parameter in Gaia Portal’s hostnames page, enabling command injection and local privilege escalation. Public material indicates affected Gaia Portal/release lines (R81.x to R81.20, R80.40) with in-...

7.2CVSS7.1AI score0.21381EPSS
Exploits3References5Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/26 10:57 a.m.26 views

CVE-2023-28130

Local user may lead to privilege escalation using Gaia Portal hostnames page...

7.2AI score0.21381EPSS
Exploits3References5
CNNVD
CNNVD
added 2023/07/26 12:0 a.m.8 views

Quantum Appliances 命令注入漏洞

Quantum Appliances is a backup appliance from Quantum. A security vulnerability exists in Quantum Appliances, Quantum Security Gateways versions R80.20SP, R80.30SP, R80.40, R81, R81.10, R81.20, which stems from the fact that a local user's use of the Gaia Portal hostnames page may lead to Privile...

7.2CVSS7AI score0.21381EPSS
Exploits3References6
CheckPoint Security
CheckPoint Security
added 2023/07/25 12:0 a.m.16 views

Check Point Response to CVE-2023-28130 - Hostname command injection in Gaia Portal

Symptoms - Local user may lead to privilege escalation using Gaia Portal "Hosts and DNS" page. This issue received the ID CVE-2023-28130. Solution This problem was fixed. The fix adds more validations on user input and is included starting from: Check Point R82 Jumbo Hotfix Accumulator for R81.20...

7.2CVSS7.2AI score0.21381EPSS
Exploits3
Positive Technologies
Positive Technologies
added 2023/03/08 12:0 a.m.4 views

PT-2023-4187 · Check Point · Check Point Gaia Portal +1

Name of the Vulnerable Software and Affected Versions: Check Point Gaia Portal affected versions not specified Description: The issue is related to a command injection vulnerability in the Check Point Gaia Portal. It allows a local user to potentially escalate privileges using the Gaia Portal...

8.5CVSS8.1AI score0.21381EPSS
Exploits3References18
OSV
OSV
added 2022/05/11 5:15 p.m.3 views

CVE-2021-30361

The Check Point Gaia Portal's GUI Clients allowed authenticated administrators with permission for the GUI Clients settings to inject a command that would run on the Gaia OS...

6.7CVSS6.7AI score0.04361EPSS
Exploits0References1
Prion
Prion
added 2022/05/11 5:15 p.m.11 views

Command injection

The Check Point Gaia Portal's GUI Clients allowed authenticated administrators with permission for the GUI Clients settings to inject a command that would run on the Gaia OS...

6.9CVSS6.5AI score0.04361EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder