4 matches found
CVE-2022-23742
creationtimestamp| type| source ---|---|--- 2022-05-13 00:42:35+00:00| seen| https://t.me/cibsecurity/42569...
CVE-2022-23742
Affected software: Check Point Endpoint Security Client for Windows (versions earlier than E86.40). Vulnerability details: The EFRService copies forensics report files from a directory with insufficient privileges, allowing a local attacker to replace those files with malicious or linked content,...
CVE-2022-23742
Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports from a directory with low privileges. An attacker can replace those files with malicious or linked content, such as exploiting CVE-2020-0896 on unpatched systems or using symbolic links...
Check Point Response to CVE-2022-23742 - local privileges escalation in Endpoint Security Client's EFRService
Symptoms - The EFRService, which collects forensics data for various blades for the Check Point Endpoint Security Client for Windows, copies files for forensics reports from a directory with insufficient privileges. A local attacker can replace those files with malicious or linked content, which...