CVE-2019-8452

Опубликовано: 22 апр. 2019

Источник: nvd

CVSS3: 7.8

CVSS2: 4.6

EPSS Низкий

Описание

A hard-link created from log file archive of Check Point ZoneAlarm up to 15.4.062 or Check Point Endpoint Security client for Windows before E80.96 to any file on the system will get its permission changed so that all users can access that linked file. Doing this on files with limited access gains the local attacker higher privileges to the file.

Ссылки

http://packetstormsecurity.com/files/154754/CheckPoint-Endpoint-Security-Client-ZoneAlarm-Privilege-Escalation.html
Exploit
Third Party Advisory
VDB Entry
https://supportcenter.us.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk150012
Vendor Advisory
https://www.zonealarm.com/software/release-history/zafavfw.html#15.4.260.17960
Vendor Advisory
http://packetstormsecurity.com/files/154754/CheckPoint-Endpoint-Security-Client-ZoneAlarm-Privilege-Escalation.html
Exploit
Third Party Advisory
VDB Entry
https://supportcenter.us.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk150012
Vendor Advisory
https://www.zonealarm.com/software/release-history/zafavfw.html#15.4.260.17960
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:checkpoint:endpoint_security:*:*:*:*:*:windows:*:*

Версия до e80.96 (исключая)

cpe:2.3:a:checkpoint:zonealarm:*:*:*:*:*:*:*:*

Версия до 15.4.062 (включая)

EPSS

Процентиль: 44%

0.00219

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-65

CWE-59

Связанные уязвимости

GHSA-5prc-43fj-m4f2

github

больше 3 лет назад

BDU:2019-04719