CVE-2022-23742

7.8 HIGH

Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports from a directory with low ...

Published: 2022-05-12 · Last updated: 2026-06-02

Severity and scoring

CVSS: 7.8 HIGH
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-59, CWE-65

Affected products

Vendor	Product
checkpoint	endpoint_security

Description

Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports from a directory with low privileges. An attacker can replace those files with malicious or linked content, such as exploiting CVE-2020-0896 on unpatched systems or using symbolic links.

Source: NVD

References

[NVD]https://nvd.nist.gov/vuln/detail/CVE-2022-23742
[Other]https://supportcontent.checkpoint.com/solutions?id=sk178665%2C
[Vendor advisory]https://supportcontent.checkpoint.com/solutions?id=sk179132
[Other]https://supportcontent.checkpoint.com/solutions?id=sk178665%2C
[Vendor advisory]https://supportcontent.checkpoint.com/solutions?id=sk179132

Related CVEs

Same vendor

CVE-2026-50751 — A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticate... (9.3 CRITICAL)

Same CWE

CVE-2026-45384 — bit7z is a cross-platform C++ static library that allows the compression/extraction of archive files (6.1 MEDIUM)
CVE-2026-53476 — A flaw was found in assisted-migration-agent (9.6 CRITICAL)
CVE-2026-11853 — Debusine is an integrated solution to build, distribute and maintain a Debian-based distribution (6.5 MEDIUM)
CVE-2026-11837 — A local privilege escalation vulnerability was found in the ansible.posix authorized_key module (7.3 HIGH)
CVE-2026-50511 — Improper link resolution before file access ('link following') in Microsoft PC Manager allows an authorized attacker to elevate privilege... (7.8 HIGH)