HIGH🇵🇱 Wersja polska

CVE-2023-28134

CVSS 7.8v3.1pub. 2023-11-12upd. 2024-11-21

Local attacker can escalate privileges on affected installations of Check Point Harmony Endpoint/ZoneAlarm Extreme Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Checkpoint Endpoint Security

    APP
    Checkpoint
    e84e85e86
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
LPE
CWE
References

Related vulnerabilities

CVE-2023-28133HIGH7.8ten sam produkt

Local privilege escalation in Check Point Endpoint Security Client (version E87.30) via crafted OpenSSL config...

CVE-2022-23742HIGH7.8ten sam produkt

Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports...

CVE-2021-30360HIGH7.8ten sam produkt

Users have access to the directory where the installation repair occurs. Since the MS Installer allows regular...

CVE-2020-6021HIGH7.8ten sam produkt

Check Point Endpoint Security Client for Windows before version E84.20 allows write access to the directory fr...

CVE-2019-8461HIGH7.8ten sam produkt

Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in a...