← voltar
CVE-2021-30360

CVE-2021-30360

EPSS 0.6%CWE-427
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS EPSS 0.6%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
07 jan 2022Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
Users have access to the directory where the installation repair occurs. Since the MS Installer allows regular users to run the repair, an attacker can initiate the installation repair and place a specially crafted EXE in the repair folder which runs with the Check Point Remote Access Client privileges.
Produtos afetados
n/a · Check Point Remote Access Client

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0001/MNDT-2022-0001.mdhttps://supportcontent.checkpoint.com/solutions?id=sk176853