File Manipulation Vulnerability in Check Point Endpoint Security Client for Windows
CVE-2022-23742

7.8HIGH

Key Information:

Vendor: Checkpoint
Status: Check Point Endpoint Security Client For Windows
Vendor: CVE Published:; 12 May 2022

Summary

The Check Point Endpoint Security Client for Windows contains a file manipulation vulnerability that impacts versions prior to E86.40. This flaw allows an attacker to manipulate forensic report files by replacing them with malicious content from directories with inadequate access restrictions. Exploiting this vulnerability could lead to further attacks on unpatched systems, particularly through established vulnerabilities like CVE-2020-0896 or by leveraging symbolic links.

Affected Version(s)

Check Point Endpoint Security Client for Windows before E86.40

References

https://supportcontent.checkpoint.com/solutions?id=sk1786...

x_refsource_MISC

https://supportcontent.checkpoint.com/solutions?id=sk179132

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 12, 2022
Vulnerability Reserved
Jan 19, 2022