Описание
Untrusted search path vulnerability in TrGUI.exe in the Endpoint Connect (aka EPC) GUI in Check Point Endpoint Security R73.x and E80.x on the VPN blade platform, Endpoint Security VPN R75, Endpoint Connect R73.x, and Remote Access Clients E75.x allows local users to gain privileges via a Trojan horse DLL in the current working directory.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:checkpoint:endpoint_connect:r73:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:endpoint_security:e80:-:vpn_blade:*:*:*:*:*
cpe:2.3:a:checkpoint:endpoint_security:e80.10:-:vpn_blade:*:*:*:*:*
cpe:2.3:a:checkpoint:endpoint_security:e80.20:-:vpn_blade:*:*:*:*:*
cpe:2.3:a:checkpoint:endpoint_security:e80.30:-:vpn_blade:*:*:*:*:*
cpe:2.3:a:checkpoint:endpoint_security:r73:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:endpoint_security_vpn:r75:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:remote_access_clients:e75:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:remote_access_clients:e75.10:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:remote_access_clients:e75.20:*:*:*:*:*:*:*
EPSS
Процентиль: 18%
0.00057
Низкий
6.9 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Untrusted search path vulnerability in TrGUI.exe in the Endpoint Connect (aka EPC) GUI in Check Point Endpoint Security R73.x and E80.x on the VPN blade platform, Endpoint Security VPN R75, Endpoint Connect R73.x, and Remote Access Clients E75.x allows local users to gain privileges via a Trojan horse DLL in the current working directory.
EPSS
Процентиль: 18%
0.00057
Низкий
6.9 Medium
CVSS2
Дефекты
NVD-CWE-Other