Skip to main content

Remote Access Clients

4 CVEs product

Monthly

CVE-2019-8461 HIGH POC PATCH This Week

Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoint Client installed. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Microsoft Information Disclosure Checkpoint Capsule Docs Standalone Client Endpoint Security +1
NVD
CVSS 3.0
7.8
EPSS
1.1%
CVE-2019-8459 CRITICAL Act Now

Check Point Endpoint Security Client for Windows, with the VPN blade, before version E80.83, starts a process without using quotes in the path. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Checkpoint Jumbo Hotfix For Endpoint Security Server Endpoint Security Server Package +4
NVD
CVSS 3.0
9.8
EPSS
1.2%
CVE-2019-8458 MEDIUM This Month

Check Point Endpoint Security Client for Windows, with Anti-Malware blade installed, before version E81.00, tries to load a non-existent DLL during an update initiated by the UI. Rated medium severity (CVSS 4.4), this vulnerability is remotely exploitable. No vendor patch available.

RCE Microsoft Checkpoint Endpoint Security Clients Remote Access Clients +1
NVD
CVSS 3.1
4.4
EPSS
1.0%
CVE-2012-2753 MEDIUM PATCH This Month

Untrusted search path vulnerability in TrGUI.exe in the Endpoint Connect (aka EPC) GUI in Check Point Endpoint Security R73.x and E80.x on the VPN blade platform, Endpoint Security VPN R75, Endpoint. Rated medium severity (CVSS 6.9).

Information Disclosure Endpoint Connect Endpoint Security Endpoint Security Vpn Remote Access Clients
NVD
CVSS 2.0
6.9
EPSS
0.1%
EPSS 1% CVSS 7.8
HIGH POC PATCH This Week

Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoint Client installed. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Microsoft Information Disclosure Checkpoint +3
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

Check Point Endpoint Security Client for Windows, with the VPN blade, before version E80.83, starts a process without using quotes in the path. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Checkpoint +6
NVD
EPSS 1% CVSS 4.4
MEDIUM This Month

Check Point Endpoint Security Client for Windows, with Anti-Malware blade installed, before version E81.00, tries to load a non-existent DLL during an update initiated by the UI. Rated medium severity (CVSS 4.4), this vulnerability is remotely exploitable. No vendor patch available.

RCE Microsoft Checkpoint +3
NVD
EPSS 0% CVSS 6.9
MEDIUM PATCH This Month

Untrusted search path vulnerability in TrGUI.exe in the Endpoint Connect (aka EPC) GUI in Check Point Endpoint Security R73.x and E80.x on the VPN blade platform, Endpoint Security VPN R75, Endpoint. Rated medium severity (CVSS 6.9).

Information Disclosure Endpoint Connect Endpoint Security +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy