Check Point ZoneAlarm prior 15.8.200.19118 Upgrade privileges management

A vulnerability, which was classified as critical, was found in Check Point ZoneAlarm (Firewall Software). Affected is an unknown part of the component Upgrade Handler. Upgrading to version 15.8.200.19118 eliminates this vulnerability.

Field05/12/2022 12:44 PM05/14/2022 03:29 PM
vendorCheck PointCheck Point
nameZoneAlarmZoneAlarm
componentUpgrade HandlerUpgrade Handler
cwe269 (privilege escalation)269 (privilege escalation)
risk22
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prLL
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iLL
cvss3_vuldb_aLL
cvss3_vuldb_rlOO
cvss3_vuldb_rcCC
urlhttps://www.zonealarm.com/software/extreme-security/release-historyhttps://www.zonealarm.com/software/extreme-security/release-history
nameUpgradeUpgrade
upgrade_version15.8.200.1911815.8.200.19118
cveCVE-2022-23743CVE-2022-23743
cve_assigned16425468001642546800
date1652306400 (05/12/2022)1652306400 (05/12/2022)
typeFirewall SoftwareFirewall Software
cvss2_vuldb_avNN
cvss2_vuldb_acLL
cvss2_vuldb_ciPP
cvss2_vuldb_iiPP
cvss2_vuldb_aiPP
cvss2_vuldb_rcCC
cvss2_vuldb_rlOFOF
cvss2_vuldb_auSS
cvss2_vuldb_eNDND
cvss3_vuldb_eXX
cvss2_vuldb_basescore6.56.5
cvss2_vuldb_tempscore5.75.7
cvss3_vuldb_basescore6.36.3
cvss3_vuldb_tempscore6.06.0
cvss3_meta_basescore6.36.3
cvss3_meta_tempscore6.06.0
price_0day$0-$5k$0-$5k
cve_nvd_summaryCheck Point ZoneAlarm before version 15.8.200.19118 allows a local actor to escalate privileges during the upgrade process.

Might our Artificial Intelligence support you?

Check our Alexa App!