Lucene search
K

4 matches found

Circl
Circl
added 2022/05/13 12:42 a.m.5 views

CVE-2022-23742

creationtimestamp| type| source ---|---|--- 2022-05-13 00:42:35+00:00| seen| https://t.me/cibsecurity/42569...

7.8CVSS7.5AI score0.04076EPSS
Exploits0References1
CVE
CVE
added 2022/05/12 7:23 p.m.119 views

CVE-2022-23742

Affected software: Check Point Endpoint Security Client for Windows (versions earlier than E86.40). Vulnerability details: The EFRService copies forensics report files from a directory with insufficient privileges, allowing a local attacker to replace those files with malicious or linked content,...

7.8CVSS7.4AI score0.04076EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/05/12 7:23 p.m.38 views

CVE-2022-23742

Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports from a directory with low privileges. An attacker can replace those files with malicious or linked content, such as exploiting CVE-2020-0896 on unpatched systems or using symbolic links...

8.7AI score0.04076EPSS
Exploits0References2
CheckPoint Security
CheckPoint Security
added 2022/05/11 12:0 a.m.24 views

Check Point Response to CVE-2022-23742 - local privileges escalation in Endpoint Security Client's EFRService

Symptoms - The EFRService, which collects forensics data for various blades for the Check Point Endpoint Security Client for Windows, copies files for forensics reports from a directory with insufficient privileges. A local attacker can replace those files with malicious or linked content, which...

7.8CVSS7.5AI score0.04076EPSS
Exploits0
Rows per page
Query Builder