CVE-2022-23742 – Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files f …

Vuln ID: CVE-2022-23742

Published:  2022-05-12  20:15:15Z

Description: Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports from a directory with low privileges. An attacker can replace those files with malicious or linked content, such as exploiting CVE-2020-0896 on unpatched systems or using symbolic links.

Source: NVD.NIST.GOV