CVE-2021-30358

Summary

Mobile Access Portal Native Applications who's path is defined by the administrator with environment variables may run applications from other locations by the Mobile Access Portal Agent.

Affected Software

VendorProductVersion RangeStatus
n/aCheck Point Mobile Access Portal Agentbefore build 800007042affected

Weaknesses

  • CWE-78: CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

ADP Enrichment

CVE Program Container

Additional References

References