- Description
- Check Point SmartConsole before R80.10 Build 185, R80.20 Build 119, R80.30 before Build 94, R80.40 before Build 415, and R81 before Build 548 were vulnerable to a possible local privilege escalation due to running executables from a directory with write access to all authenticated users.
- Source
- cve@checkpoint.com
- NVD status
- Modified
CVSS 3.1
- Type
- Primary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 4.6
- Impact score
- 6.4
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:P/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:checkpoint:smartconsole:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B1DD7269-40DD-4A4B-BF0B-E928201BA31D",
"versionEndIncluding": "r80.10"
},
{
"criteria": "cpe:2.3:a:checkpoint:smartconsole:r80.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5DDE7A64-BC36-4C95-BBE4-9BF146AC66DE"
},
{
"criteria": "cpe:2.3:a:checkpoint:smartconsole:r80.30:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "476C415F-F9E3-4A92-9CCF-13FDA0FA99CF"
},
{
"criteria": "cpe:2.3:a:checkpoint:smartconsole:r80.40:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0AD4456C-5CD1-4615-9658-95CD94B7B603"
},
{
"criteria": "cpe:2.3:a:checkpoint:smartconsole:r81:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "613920F7-2800-4B77-8A54-6C6BC6E0D233"
}
],
"operator": "OR"
}
]
}
]