CVE-2022-23742
First published: Thu May 12 2022(Updated: )
Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports from a directory with low privileges. An attacker can replace those files with malicious or linked content, such as exploiting CVE-2020-0896 on unpatched systems or using symbolic links.
Credit: cve@checkpoint.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Checkpoint Endpoint Security Clients | <e86.40 | |
| Microsoft Windows Operating System |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability identifier for this issue?
The vulnerability identifier for this issue is CVE-2022-23742.
What is the affected software?
The affected software is Check Point Endpoint Security Client for Windows versions earlier than E86.40.
How can an attacker exploit this vulnerability?
An attacker can replace forensic report files with malicious or linked content, such as exploiting CVE-2020-0896 on unpatched systems or using symbolic links.
What is the severity of this vulnerability?
This vulnerability has a severity score of 7.8, which is considered high.
How can I fix this vulnerability?
To fix this vulnerability, update Check Point Endpoint Security Client to version E86.40 or later.
- agent/weakness
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/last-modified-date
- agent/severity
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/checkpoint
- canonical/checkpoint endpoint security clients
- vendor/microsoft
- canonical/microsoft windows operating system