What is CVE-2023-28134?

CVE-2023-28134 is a vulnerability that allows a local attacker to escalate privileges on affected installations of Check Point Harmony Endpoint/ZoneAlarm Extreme Security.

What is the severity of CVE-2023-28134?

CVE-2023-28134 has a severity rating of 7.8, which is considered high.

Which software is affected by CVE-2023-28134?

Checkpoint Endpoint Security versions e84, e85, and e86 are affected by CVE-2023-28134.

How can I fix CVE-2023-28134?

To mitigate CVE-2023-28134, it is recommended to apply the necessary security updates provided by Check Point or follow the instructions provided in the reference link.

Vulnerability/
CVE-2023-28134

high

7.8

CWE

732

12/11/2023

3/9/2024

CVE-2023-28134: Local Privliege Escalation in Check Point Endpoint Security Remediation Service

First published: Sun Nov 12 2023(Updated: )

Local attacker can escalate privileges on affected installations of Check Point Harmony Endpoint/ZoneAlarm Extreme Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Credit: cve@checkpoint.com

Affected Software	Affected Version	How to fix
Checkpoint Endpoint Security	=e84
Checkpoint Endpoint Security	=e85
Checkpoint Endpoint Security	=e86

Never miss a vulnerability like this again

Reference Links

https://support.checkpoint.com/results/sk/sk181597

Frequently Asked Questions

What is CVE-2023-28134?
CVE-2023-28134 is a vulnerability that allows a local attacker to escalate privileges on affected installations of Check Point Harmony Endpoint/ZoneAlarm Extreme Security.
How can an attacker exploit CVE-2023-28134?
In order to exploit CVE-2023-28134, an attacker must first obtain the ability to execute low-privileged code on the target system.
What is the severity of CVE-2023-28134?
CVE-2023-28134 has a severity rating of 7.8, which is considered high.
Which software is affected by CVE-2023-28134?
Checkpoint Endpoint Security versions e84, e85, and e86 are affected by CVE-2023-28134.
How can I fix CVE-2023-28134?
To mitigate CVE-2023-28134, it is recommended to apply the necessary security updates provided by Check Point or follow the instructions provided in the reference link.

agent/type
agent/event
agent/softwarecombine
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/weakness
agent/title
agent/last-modified-date
agent/references
agent/severity
agent/author
agent/description
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
vendor/checkpoint
canonical/checkpoint endpoint security
version/checkpoint endpoint security/e84
version/checkpoint endpoint security/e85
version/checkpoint endpoint security/e86

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.