CVE-2021-30358
N/A
N/A
Summary
Mobile Access Portal Native Applications who's path is defined by the administrator with environment variables may run applications from other locations by the Mobile Access Portal Agent.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Check Point Mobile Access Portal Agent | before build 800007042 | affected |
Weaknesses
- CWE-78: CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
ADP Enrichment
CVE Program Container
Additional References
- https://supportcontent.checkpoint.com/solutions?id=sk142952
- https://supportcontent.checkpoint.com/solutions?id=sk175806
References
- https://supportcontent.checkpoint.com/solutions?id=sk142952
- https://supportcontent.checkpoint.com/solutions?id=sk175806
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.