Lucene search
+L

5 matches found

0day.today
0day.today
added 2023/08/02 12:0 a.m.493 views

Checkpoint Gaia Portal R81.10 Remote Command Execution Vulnerability

========================= Exploit Title: Hostname injection leads to Remote Code Execution RCE Authenticated Product: Gaia Portal Vendor: Checkpoint Vulnerable Versions: R81.20 Take 14, R81.10 Take 95, R81 Take 82 and R80.40 Take 198 Tested Version: R81.10 take 335 Advisory Publication: July 27,...

7.2CVSS7.1AI score0.21381EPSS
Exploits3
Circl
Circl
added 2023/07/26 2:27 p.m.12 views

CVE-2023-28130

creationtimestamp| type| source ---|---|--- 2023-07-26 14:27:35+00:00| seen| https://t.me/cibsecurity/67297 2023-08-03 11:03:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/8784 2023-08-04 09:51:06+00:00| seen| https://t.me/thebugbountyhunter/7616 2023-08-12...

7.2CVSS7AI score0.21381EPSS
Exploits3References6
NVD
NVD
added 2023/07/26 11:15 a.m.46 views

CVE-2023-28130

Local user may lead to privilege escalation using Gaia Portal hostnames page...

7.2CVSS7.2AI score0.21381EPSS
Exploits3References5
CVE
CVE
added 2023/07/26 10:57 a.m.168 views

CVE-2023-28130

CVE-2023-28130 affects Check Point Gaia Portal. The root cause is improper handling of the hostname parameter in Gaia Portal’s hostnames page, enabling command injection and local privilege escalation. Public material indicates affected Gaia Portal/release lines (R81.x to R81.20, R80.40) with in-...

7.2CVSS7.1AI score0.21381EPSS
Exploits3References5Affected Software1
Cvelist
Cvelist
added 2023/07/26 10:57 a.m.44 views

CVE-2023-28130

Local user may lead to privilege escalation using Gaia Portal hostnames page...

7.4AI score0.21381EPSS
Exploits3References5
Rows per page
Query Builder