CVE-2021-30360

Exploit

EPSS 0.04%
Veröffentlicht 10.01.2022 14:10:17
Zuletzt bearbeitet 21.11.2024 06:03:56
Quelle cve@checkpoint.com
Teams Watchlist Login
Unerledigt Login

Users have access to the directory where the installation repair occurs. Since the MS Installer allows regular users to run the repair, an attacker can initiate the installation repair and place a specially crafted EXE in the repair folder which runs with the Check Point Remote Access Client privileges.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Checkpoint ≫ Endpoint Security SwPlatformwindows Version < e86.20

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.102

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

CWE-427 Uncontrolled Search Path Element

The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.

https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0001/MNDT-2022-0001.md

Third Party Advisory

Exploit

https://supportcontent.checkpoint.com/solutions?id=sk176853

Vendor Advisory

Product

https://nvd.nist.gov/vuln/detail/CVE-2021-30360

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-30360

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-30360

EUVD