CVE-2021-30360

Exploit

EPSS 0.04%
Published 10.01.2022 14:10:17
Last modified 21.11.2024 06:03:56
Source cve@checkpoint.com
Teams watchlist Login
Open Login

Users have access to the directory where the installation repair occurs. Since the MS Installer allows regular users to run the repair, an attacker can initiate the installation repair and place a specially crafted EXE in the repair folder which runs with the Check Point Remote Access Client privileges.

Affected products Warnungen 0 Metrics 3 CWE 1 References 5

Data is provided by the National Vulnerability Database (NVD)

Checkpoint ≫ Endpoint Security SwPlatformwindows Version < e86.20

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.04%	0.102

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

CWE-427 Uncontrolled Search Path Element

The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.

https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0001/MNDT-2022-0001.md

Third Party Advisory

Exploit

https://supportcontent.checkpoint.com/solutions?id=sk176853

Vendor Advisory

Product

https://nvd.nist.gov/vuln/detail/CVE-2021-30360

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-30360

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-30360

EUVD