Vulnerability Details CVE-2021-30360
Users have access to the directory where the installation repair occurs. Since the MS Installer allows regular users to run the repair, an attacker can initiate the installation repair and place a specially crafted EXE in the repair folder which runs with the Check Point Remote Access Client privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 12.8%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 7.2
References
- https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0001/MNDT-2022-0001.md
- https://supportcontent.checkpoint.com/solutions?id=sk176853
- https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0001/MNDT-2022-0001.md
- https://supportcontent.checkpoint.com/solutions?id=sk176853
Products affected by CVE-2021-30360
-
cpe:2.3:a:checkpoint:endpoint_security:e80.96
-
cpe:2.3:a:checkpoint:endpoint_security:e81.30
-
cpe:2.3:a:checkpoint:endpoint_security:e83.20
-
cpe:2.3:a:checkpoint:endpoint_security:e84.10
-
cpe:2.3:a:checkpoint:endpoint_security:e84.20