Checkpoint Endpoint Security — known CVE vulnerabilities
Every CVE whose affected-product data names Checkpoint Endpoint Security, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2020-6021 — CVSS 7.8 (high): Check Point Endpoint Security Client for Windows before version E84.20 allows write access to the directory from which the installation…
CVE-2023-28134 — CVSS 7.8 (high): Local attacker can escalate privileges on affected installations of Check Point Harmony Endpoint/ZoneAlarm Extreme Security. An attacker…
CVE-2023-28133 — CVSS 7.8 (high): Local privilege escalation in Check Point Endpoint Security Client (version E87.30) via crafted OpenSSL configuration file
CVE-2019-8452 — CVSS 7.8 (high): A hard-link created from log file archive of Check Point ZoneAlarm up to 15.4.062 or Check Point Endpoint Security client for Windows…
CVE-2021-30360 — CVSS 7.8 (high): Users have access to the directory where the installation repair occurs. Since the MS Installer allows regular users to run the repair, an…
CVE-2019-8461 — CVSS 7.8 (high): Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean…
CVE-2022-23742 — CVSS 7.8 (high): Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports from a directory with low…
CVE-2019-8454 — CVSS 7.0 (high): A local attacker can create a hard-link between a file to which the Check Point Endpoint Security client for Windows before E80.96 writes…
CVE-2012-2753 — CVSS 6.9 (medium): Untrusted search path vulnerability in TrGUI.exe in the Endpoint Connect (aka EPC) GUI in Check Point Endpoint Security R73.x and E80.x on…
CVE-2020-6014 — CVSS 6.5 (medium): Check Point Endpoint Security Client for Windows, with Anti-Bot or Threat Emulation blades installed, before version E83.20, tries to load…
CVE-2020-6015 — CVSS 5.5 (medium): Check Point Endpoint Security for Windows before E84.10 can reach denial of service during clean install of the client which will prevent…
CVE-2013-5636 — CVSS 3.3 (low): Unlock.exe in Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not associate password failures with a…
CVE-2013-5635 — CVSS 3.3 (low): Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not properly maintain the state of password failures…
CVE-2022-23744 — CVSS 2.3 (low): Check Point Endpoint before version E86.50 failed to protect against specific registry change which allowed to disable endpoint protection…