Lucene search
K

60 matches found

CNNVD
CNNVD
added 2023/08/14 12:0 a.m.4 views

Apple macOS Ventura Security Vulnerability

Apple macOS Ventura is a desktop operating system from Apple Inc. in the United States. A security vulnerability exists in Apple macOS Ventura version 13, which originates from an application that may cause a denial of service to an Endpoint Security client...

5.5CVSS6.4AI score0.00182EPSS
Exploits0References2
OSV
OSV
added 2023/07/23 10:15 a.m.5 views

CVE-2023-28133

Local privilege escalation in Check Point Endpoint Security Client version E87.30 via crafted OpenSSL configuration file...

7.8CVSS5.8AI score0.05701EPSS
Exploits0References1
Prion
Prion
added 2023/07/23 10:15 a.m.24 views

Design/Logic Flaw

Local privilege escalation in Check Point Endpoint Security Client version E87.30 via crafted OpenSSL configuration file...

4.4CVSS7.8AI score0.05701EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/07/23 9:7 a.m.69 views

CVE-2023-28133

CVE-2023-28133 relates to a local privilege escalation in Check Point Endpoint Security Client (E87.30). The root cause is a flaw involving a crafted OpenSSL configuration file that allows a low-privilege user (Users group) to elevate privileges via affected components (e.g., TracSrvWrapper.exe, ...

7.8CVSS7.7AI score0.05701EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/07/23 12:0 a.m.5 views

Check Point Endpoint Security Client 安全漏洞

Check Point Endpoint Security Client is an endpoint security protection software from Check Point, Israel. A security vulnerability exists in Check Point Endpoint Security Client version E87.30, which originated from a vulnerability that allows an attacker to perform a local privilege escalation ...

7.8CVSS7.4AI score0.05701EPSS
Exploits0References3
CheckPoint Security
CheckPoint Security
added 2023/07/19 12:0 a.m.13 views

Check Point Response to CVE-2023-28133 - Local privilege escalation in Check Point Endpoint Security Client via crafted OpenSSL configuration file

Symptoms - Local privilege escalation in Check Point Endpoint Security Client. Affected versions: E87.30 and lower, including all E86.x clients. Affected clients: Standalone Remote Access VPN clients, Endpoint Security Clients with Remote Access VPN enabled. Affected processes: TracSrvWrapper.exe...

7.8CVSS7.4AI score0.05701EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/07/19 12:0 a.m.4 views

PT-2023-3999 · Check Point · Check Point Endpoint Security Client

Name of the Vulnerable Software and Affected Versions: Check Point Endpoint Security Client version E87.30 Description: The issue is related to a local privilege escalation in Check Point Endpoint Security Client. It is caused by incorrect permission assignment for a critical resource. Exploitati...

7.8CVSS7.6AI score0.05701EPSS
Exploits0References6
CNNVD
CNNVD
added 2022/07/01 12:0 a.m.7 views

Check Point Endpoint Security Client 安全漏洞

Check Point Endpoint Security Client is an endpoint security protection software from Check Point Israel. A security vulnerability exists in Check Point Endpoint Security Client. An attacker can cause a fatal error to occur by modifying an unprotected registry to trigger a denial of service...

2.3CVSS5.1AI score0.0435EPSS
Exploits0References3
NCSC
NCSC
added 2022/05/13 12:0 a.m.5 views

Vulnerability fixed in Check Point Endpoint Security Client

Check Point has fixed a vulnerability in Check Point Endpoint Security Client for Windows. A local malicious agent could exploit the vulnerability to obtain elevated privileges and then execute arbitrary code under those privileges. To do so, the malicious party must place rogue files in a...

7.8CVSS7.5AI score0.04076EPSS
Exploits0
Prion
Prion
added 2022/05/12 8:15 p.m.17 views

Design/Logic Flaw

Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports from a directory with low privileges. An attacker can replace those files with malicious or linked content, such as exploiting CVE-2020-0896 on unpatched systems or using symbolic links...

4.6CVSS7.3AI score0.04076EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2022/05/12 12:0 a.m.5 views

Check Point Endpoint Security Client后置链接漏洞

Check Point Endpoint Security Client is an endpoint security protection software from Check Point, Israel. A security vulnerability exists in Check Point Endpoint Security Client that originates from the ability to copy from a low-privilege directory to a high-privilege directory, which could all...

7.8CVSS7.4AI score0.04076EPSS
Exploits0References5
CheckPoint Security
CheckPoint Security
added 2022/05/11 12:0 a.m.24 views

Check Point Response to CVE-2022-23742 - local privileges escalation in Endpoint Security Client's EFRService

Symptoms - The EFRService, which collects forensics data for various blades for the Check Point Endpoint Security Client for Windows, copies files for forensics reports from a directory with insufficient privileges. A local attacker can replace those files with malicious or linked content, which...

7.8CVSS7.5AI score0.04076EPSS
Exploits0
Packet Storm
Packet Storm
added 2021/10/06 12:0 a.m.295 views

G Data EndpointProtection Enterprise 17.08.2021 Privilege Escalation

DATA Anti-Virus: Abusing OpenSSL to get local admin Metadata =================================================== Release Date: 05-Oct-2021 Author: Florian Bogner @ https://bee-itsecurity.at Affected product: G Data’s Security Client “EndpointProtection Enterprise” Fixed in: all versions after...

0.9AI score
Exploits0
Rockylinux
Rockylinux
added 2021/08/10 12:0 p.m.10 views

esc bug fix and enhancement update

An update is available for esc. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The esc packages contain the Enterprise Security Client ESC, which allows the use...

0.7AI score
Exploits0
AlmaLinux
AlmaLinux
added 2021/08/10 12:0 p.m.10 views

esc bug fix and enhancement update

The esc packages contain the Enterprise Security Client ESC, which allows the user to manage security smart cards. The primary function of the tool is to enroll smart cards, so that they can be used for common cryptographic operations, such as to secure e-mail and website access. Bug Fixes and...

1.4AI score
Exploits0References1
OSV
OSV
added 2021/08/10 12:0 p.m.10 views

ALBA-2021:3068 esc bug fix and enhancement update

The esc packages contain the Enterprise Security Client ESC, which allows the user to manage security smart cards. The primary function of the tool is to enroll smart cards, so that they can be used for common cryptographic operations, such as to secure e-mail and website access. Bug Fixes and...

7.2AI score
Exploits0References1
AlmaLinux
AlmaLinux
added 2021/04/06 1:31 p.m.19 views

esc bug fix and enhancement update

The esc packages contain the Enterprise Security Client ESC, which allows the user to manage security smart cards. The primary function of the tool is to enroll smart cards, so that they can be used for common cryptographic operations, such as to secure e-mail and website access. Bug Fixes and...

0.1AI score
Exploits0
CNNVD
CNNVD
added 2020/12/02 12:0 a.m.7 views

Check Point Endpoint Security Client Code Issue Vulnerability

Check Point Endpoint Security Client is an endpoint security protection software from Check Point, Israel. A code issue vulnerability exists in Check Point Endpoint Security Client, no information about this vulnerability is available at this time, please stay tuned to CNNVD or vendor announcemen...

7.8CVSS7.2AI score0.003EPSS
Exploits0References3
OSV
OSV
added 2020/11/02 9:15 p.m.4 views

CVE-2020-6014

Check Point Endpoint Security Client for Windows, with Anti-Bot or Threat Emulation blades installed, before version E83.20, tries to load a non-existent DLL during a query for the Domain Name. An attacker with administrator privileges can leverage this to gain code execution within a Check Point...

6.5CVSS7AI score0.00372EPSS
Exploits0References1
CNVD
CNVD
added 2019/12/24 12:0 a.m.2 views

Check Point Endpoint Security Client Backlink Vulnerability

Check Point Endpoint Security Client is an endpoint security protection software from Check Point Israel. A backlink vulnerability exists in versions of Check Point Endpoint Security Client prior to E82.10 for Windows-based platforms. The vulnerability originates from a network system or product...

7.5CVSS6.7AI score0.01209EPSS
Exploits0References1
Rows per page
Query Builder