CVE-2021-30357
Published Jun 8, 2021
Last updated 3 years ago
Overview
- Description
- SSL Network Extender Client for Linux before build 800008302 reveals part of the contents of the configuration file supplied, which allows partially disclosing files to which the user did not have access.
- Source
- cve@checkpoint.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 5.3
- Impact score
- 1.4
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:checkpoint:ssl_network_extender:r80.10:*:*:*:*:linux:*:*",
"vulnerable": true,
"matchCriteriaId": "424ECFFC-D92E-4040-AAD9-5A18ADAFE4B7"
},
{
"criteria": "cpe:2.3:a:checkpoint:ssl_network_extender:r80.20:*:*:*:*:linux:*:*",
"vulnerable": true,
"matchCriteriaId": "6E36C9C4-C1FF-44E4-9177-467EAD0983D7"
},
{
"criteria": "cpe:2.3:a:checkpoint:ssl_network_extender:r80.30:*:*:*:*:linux:*:*",
"vulnerable": true,
"matchCriteriaId": "726962E0-DF4B-4450-BF2F-F414A382CA78"
},
{
"criteria": "cpe:2.3:a:checkpoint:ssl_network_extender:r80.40:*:*:*:*:linux:*:*",
"vulnerable": true,
"matchCriteriaId": "35346EB4-FDEC-4496-A90F-95EB35FA1532"
},
{
"criteria": "cpe:2.3:a:checkpoint:ssl_network_extender:r81:*:*:*:*:linux:*:*",
"vulnerable": true,
"matchCriteriaId": "35E08CA8-803F-460D-BB1B-57FEC4DA10CF"
}
],
"operator": "OR"
}
]
}
]