Описание
Multiple Check Point Zone Labs ZoneAlarm products before 7.0.362, including ZoneAlarm Security Suite 5.5.062.004 and 6.5.737, use insecure default permissions for critical files, which allows local users to gain privileges or bypass security controls.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 7.0.337.0 (включая)
Одно из
cpe:2.3:a:checkpoint:zonealarm:*:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm_security_suite:5.5.062.004:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm_security_suite:6.5.737:*:*:*:*:*:*:*
EPSS
Процентиль: 14%
0.00046
Низкий
7.2 High
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
почти 4 года назад
Multiple Check Point Zone Labs ZoneAlarm products before 7.0.362, including ZoneAlarm Security Suite 5.5.062.004 and 6.5.737, use insecure default permissions for critical files, which allows local users to gain privileges or bypass security controls.
EPSS
Процентиль: 14%
0.00046
Низкий
7.2 High
CVSS2
Дефекты
CWE-264