FortiClient Vulnerability

Security Vulnerabilities fixed in Check Point Endpoint Security 84.20

Description

Check Point Endpoint Security Client for Windows before version E84.20 allows write access to the directory from which the installation repair takes place. Since the MS Installer allows regular users to run the repair, an attacker can initiate the installation repair and place a specially crafted DLL in the repair folder which will run with the Endpoint clients privileges. Earlier versions have issues where an attacker with administrator privileges can execute code, load a DLL placed in any PATH to can gain LPE, and hard-link created files gaining higher privileges.

Affected Applications

Check Point Endpoint Security

CVE References

CVE-2020-6021 CVE-2020-6015 CVE-2020-6014 CVE-2019-8463 CVE-2019-8461 CVE-2019-8459 CVE-2019-8458 CVE-2019-8454 CVE-2019-8452

Other References

https://supportcenter.checkpoint.com/

ID	2332
Created	Aug 19, 2021
Description Updated	Nov 03, 2023
Risk
Coverage	FortiClient
OS	Windows
Vendor	Check Point Software
Patch	manual
Application	Check Point Endpoint Security

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiClient Vulnerability

Security Vulnerabilities fixed in Check Point Endpoint Security 84.20

Description

Affected Applications

CVE References

Other References

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

FortiClient Vulnerability

Security Vulnerabilities fixed in Check Point Endpoint Security 84.20

Description

Affected Applications

CVE References

Other References

Threat Intelligence
Center