5 matches found
Checkpoint Gaia Portal R81.10 Remote Command Execution Vulnerability
========================= Exploit Title: Hostname injection leads to Remote Code Execution RCE Authenticated Product: Gaia Portal Vendor: Checkpoint Vulnerable Versions: R81.20 Take 14, R81.10 Take 95, R81 Take 82 and R80.40 Take 198 Tested Version: R81.10 take 335 Advisory Publication: July 27,...
CVE-2023-28130
creationtimestamp| type| source ---|---|--- 2023-07-26 14:27:35+00:00| seen| https://t.me/cibsecurity/67297 2023-08-03 11:03:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/8784 2023-08-04 09:51:06+00:00| seen| https://t.me/thebugbountyhunter/7616 2023-08-12...
CVE-2023-28130
Local user may lead to privilege escalation using Gaia Portal hostnames page...
CVE-2023-28130
Local user may lead to privilege escalation using Gaia Portal hostnames page...
CVE-2023-28130
CVE-2023-28130 affects Check Point Gaia Portal. The root cause is improper handling of the hostname parameter in Gaia Portal’s hostnames page, enabling command injection and local privilege escalation. Public material indicates affected Gaia Portal/release lines (R81.x to R81.20, R80.40) with in-...