Checkpoint Capsule Docs Standalone Client vulnerabilities
2 known vulnerabilities affecting checkpoint/capsule_docs_standalone_client.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2019-8461HIGHCVSS 7.8fixed in e80.202019-08-29
CVE-2019-8461 [HIGH] CWE-114 CVE-2019-8461: Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL p
Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoint Client installed. An attacker can leverage this to gain LPE using a specially crafted DLL placed in any PATH location accessible with write permissions to the user.
nvd
CVE-2019-8459CRITICALCVSS 9.8fixed in e80.822019-06-20
CVE-2019-8459 [CRITICAL] CWE-428 CVE-2019-8459: Check Point Endpoint Security Client for Windows, with the VPN blade, before version E80.83, starts
Check Point Endpoint Security Client for Windows, with the VPN blade, before version E80.83, starts a process without using quotes in the path. This can cause loading of a previously placed executable with a name similar to the parts of the path, instead of the intended one.
nvd