Sofaware: >> Safe At Office 500 Utm Security Vulnerabilities
Cross-site request forgery (CSRF) vulnerability in Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, allows remote attackers to execute commands as arbitrary users, and disable firewalling of the protected network.
CVSS Score
6.0
EPSS Score
0.01
Published
2007-06-27
Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, does not require entry of the old password when changing the admin password, which might allow attackers to gain privileges by conducting a CSRF attack, making a password change on an unattended workstation, or other vectors.
CVSS Score
8.5
EPSS Score
0.003
Published
2007-06-27
Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, has a certain default password.
CVSS Score
10.0
EPSS Score
0.003
Published
2007-06-27