CVE-2019-8454

Name of the Vulnerable Software and Affected Versions Check Point Endpoint Security client for Windows versions prior to E80.96

Description The issue is related to insufficient access control in the Check Point Endpoint Security client, which can be exploited by a local attacker. This can be done by creating a hard-link between a file used by the client and a BAT file, allowing the attacker to write BAT commands that will later be executed by the user or the system. This could impact the confidentiality, integrity, and availability of protected information.

Recommendations For versions prior to E80.96, update to version E80.96 or later to resolve the issue. As a temporary workaround, consider restricting access to the files used by the Check Point Endpoint Security client to minimize the risk of exploitation.