CVE-2022-23742

low-risk

Published 2022-05-12

Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports from a directory with low privileges. An attacker can replace those files with malicious or linked content, such as exploiting CVE-2020-0896 on unpatched systems or using symbolic links.

Do I need to act?

0.09% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.8/10 High

LOCAL / LOW complexity

Affected Products (1)

Endpoint Security

Affected Vendors

Checkpoint

References (4)

https://supportcontent.checkpoint.com/solutions?id=sk178665%2C

Vendor Advisory https://supportcontent.checkpoint.com/solutions?id=sk179132

https://supportcontent.checkpoint.com/solutions?id=sk178665%2C

Vendor Advisory https://supportcontent.checkpoint.com/solutions?id=sk179132

/ 100

low-risk

Severity 24/34 · High

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal