Headline
CVE-2022-23742: Support, Support Requests, Training, Documentation, and Knowledge base for Check Point products and services
Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports from a directory with low privileges. An attacker can replace those files with malicious or linked content, such as exploiting CVE-2020-0896 on unpatched systems or using symbolic links.
Solution could not be found in the system.
Related news
CVE-2022-23742: 2022-23742 - Local Privileges Escalation in Check Point Endpoint Security Client's EFRService
Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports from a directory with low privileges. An attacker can replace those files with malicious or linked content, such as exploiting CVE-2020-0896 on unpatched systems or using symbolic links.