Published on June 20th, 2019 📆 | 4444 Views ⚑
0Check Point Software Endpoint Security Client prior E81.00 on Windows Anti-Malware Blade Code Execution
CVSS Meta Temp Score | Current Exploit Price (β) |
---|---|
4.3 | $0-$5k |
A vulnerability was found in Check Point Software Endpoint Security Client on Windows and classified as critical. Affected by this issue is some unknown functionality of the component Anti-Malware Blade. The manipulation with an unknown input leads to a privilege escalation vulnerability (Code Execution). Using CWE to declare the problem leads to CWE-269. Impacted is confidentiality, integrity, and availability.
The weakness was released 06/20/2019. The advisory is shared for download at supportcenter.checkpoint.com. This vulnerability is handled as CVE-2019-8458 since 02/18/2019. The exploitation is known to be difficult. The attack needs to be approached locally. The successful exploitation needs a single authentication. There are neither technical details nor an exploit publicly available.
Upgrading to version E81.00 eliminates this vulnerability.
Entry connected to this vulnerability is available at 136797.
Vendor
Name
VulDB Meta Base Score: 4.5
VulDB Meta Temp Score: 4.3
VulDB Base Score: 4.5
VulDB Temp Score: 4.3
VulDB Vector: π
VulDB Reliability: π
AV | AC | Au | C | I | A |
---|---|---|---|---|---|
π | π | π | π | π | π |
π | π | π | π | π | π |
π | π | π | π | π | π |
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
unlock | unlock | unlock | unlock | unlock | unlock |
unlock | unlock | unlock | unlock | unlock | unlock |
unlock | unlock | unlock | unlock | unlock | unlock |
VulDB Base Score: π
VulDB Temp Score: π
VulDB Reliability: π
Class: Privilege escalation / Code Execution (CWE-269)
Local: Yes
Remote: No
Availability: π
Status: Not defined
Price Prediction: π
Current Price Estimation: π
0-Day | unlock | unlock | unlock | unlock |
---|---|---|---|---|
Today | unlock | unlock | unlock | unlock |
Threat Intelligence
Threat: π
Adversaries: π
Geopolitics: π
Economy: π
Predictions: π
Remediation: πRecommended: Upgrade
Status: π
0-Day Time: π
Upgrade: Endpoint Security Client E81.00
02/18/2019 CVE assigned
06/20/2019 Advisory disclosed
06/20/2019 VulDB entry created
06/20/2019 VulDB last updateAdvisory: supportcenter.checkpoint.com
CVE: CVE-2019-8458 (π)
See also: π
Created: 06/20/2019 10:14 PM
Complete: π
Comments
Download the whitepaper to learn more about our service!
https://vuldb.com/?id.136796
No comments yet. Please log in to comment.