CVE-2019-8459

Summary

Check Point Endpoint Security Client for Windows, with the VPN blade, before version E80.83, starts a process without using quotes in the path. This can cause loading of a previously placed executable with a name similar to the parts of the path, instead of the intended one.

Affected Software

VendorProductVersion RangeStatus
Check PointCheck Point Endpoint Security Client for Windows, VPN bladebefore E80.83affected

Weaknesses

  • CWE-428: CWE-428

ADP Enrichment

CVE Program Container

Additional References

References