CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-8458

Check Point Endpoint Security Client for Windows, with Anti-Malware blade installed, before version E81.00, tries to load a non-existent DLL during an update initiated by the UI. An attacker with administrator privileges can leverage this to gain code execution within a Check Point Software Technologies signed binary, where under certain circumstances may cause the client to terminate.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 64.6%

CVSS Severity

CVSS v3 Score 4.4

CVSS v2 Score 3.5

References

https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk153053
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk153053

Products affected by CVE-2019-8458

Checkpoint » Capsule Docs » Version: Any

cpe:2.3:a:checkpoint:capsule_docs:*
Checkpoint » Endpoint Security Clients » Version: N/A

cpe:2.3:a:checkpoint:endpoint_security_clients:-
Checkpoint » Remote Access Clients » Version: Any

cpe:2.3:a:checkpoint:remote_access_clients:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-8458

Products

Pricing

Contact Us