Check Point SmartConsole before R80.10 Build 185, R80.20 Build 119, R80.30 before Build 94, R80.40 before Build 415, and R81 before Build 548 were vulnerable to a possible local privilege escalation due to running executables from a directory with write access to all authenticated users.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HCheckpoint Smartconsole
APPCheckpointr80.20r80.30r80.40r81≤ r80.10
Related vulnerabilities
Credentials are not cleared from memory after being used. A user with Administrator permissions can execute me...
Untrusted DLLs in the installer's directory may be loaded and executed, leading to potentially arbitrary code ...
Auth Bypass w Check Point VPN — pominięcie uwierzytelnienia przez błąd IKEv1
Check Point Endpoint Security Client for Windows, with the VPN blade, before version E80.83, starts a process ...
Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected t...