Checkpoint Endpoint_security
14 CVEs affecting Checkpoint Endpoint_security. Latest disclosed: 2023-11-12. Critical: 0, High: 8.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-28134 | High | 7.8 | 2023-11-12 | Local attacker can escalate privileges on affected installations of Check Point Harmony Endpoint/ZoneAlarm Extreme Security. An attacker must first obtain the… |
CVE-2023-28133 | High | 7.8 | 2023-07-23 | Local privilege escalation in Check Point Endpoint Security Client (version E87.30) via crafted OpenSSL configuration file |
CVE-2022-23742 | High | 7.8 | 2022-05-12 | Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports from a directory with low privileges. An attacke… |
CVE-2021-30360 | High | 7.8 | 2022-01-10 | Users have access to the directory where the installation repair occurs. Since the MS Installer allows regular users to run the repair, an attacker can initiat… |
CVE-2020-6021 | High | 7.8 | 2020-12-03 | Check Point Endpoint Security Client for Windows before version E84.20 allows write access to the directory from which the installation repair takes place. Sin… |
CVE-2019-8461 | High | 7.8 | 2019-08-29 | Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoin… |
CVE-2019-8452 | High | 7.8 | 2019-04-22 | A hard-link created from log file archive of Check Point ZoneAlarm up to 15.4.062 or Check Point Endpoint Security client for Windows before E80.96 to any file… |
CVE-2019-8454 | High | 7.0 | 2019-04-29 | A local attacker can create a hard-link between a file to which the Check Point Endpoint Security client for Windows before E80.96 writes and another BAT file… |
CVE-2020-6014 | Medium | 6.5 | 2020-11-02 | Check Point Endpoint Security Client for Windows, with Anti-Bot or Threat Emulation blades installed, before version E83.20, tries to load a non-existent DLL d… |
CVE-2020-6015 | Medium | 5.5 | 2020-11-05 | Check Point Endpoint Security for Windows before E84.10 can reach denial of service during clean install of the client which will prevent the storage of servic… |
CVE-2022-23744 | Low | 2.3 | 2022-07-07 | Check Point Endpoint before version E86.50 failed to protect against specific registry change which allowed to disable endpoint protection by a local administr… |
CVE-2013-5636 | | 2013-11-30 | Unlock.exe in Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not associate password failures with a device ID, which makes… | |
CVE-2013-5635 | | 2013-11-30 | Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not properly maintain the state of password failures, which makes it easier… | |
CVE-2012-2753 | | 2012-06-19 | Untrusted search path vulnerability in TrGUI.exe in the Endpoint Connect (aka EPC) GUI in Check Point Endpoint Security R73.x and E80.x on the VPN blade platfo… |