CVE-2022-23742

Summary

Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports from a directory with low privileges. An attacker can replace those files with malicious or linked content, such as exploiting CVE-2020-0896 on unpatched systems or using symbolic links.

Affected Software

VendorProductVersion RangeStatus
n/aCheck Point Endpoint Security Client for Windowsbefore E86.40affected

Weaknesses

  • CWE-65: CWE-65: Windows Hard Link

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References