Vulnerability in Check Point Endpoint Security Initial Client For Windows

CVE-2019-8461

Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoint Client installed. An attacker can leverage this to gain LPE using a specially…

EPSS: 0.002 (37.2th percentile) — read the EPSS interpretation.

Affected products

N/a Check Point Endpoint Security Initial Client For Windows — versions before version E81.30

Weakness classification (CWE)

CWE-114 — Process Control

References

supportcenter.checkpoint.com/supportcenter/portal (x_refsource_MISC)
safebreach.com/Post/Check-Point-Endpoint-Security-Initial-Client-for-Windows-Pr… (x_refsource_MISC)