PT-2019-19053 · Check Point · Check Point Endpoint Security Client

Published

2019-06-20

Updated

2019-10-09

CVE-2019-8459

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Check Point Endpoint Security Client for Windows versions prior to E80.83

Description The issue arises when a process is started without using quotes in the path, potentially leading to the loading of a previously placed executable with a similar name to parts of the path, instead of the intended one.

Recommendations For versions prior to E80.83, update to version E80.83 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-428

Related Identifiers

CVE-2019-8459

Affected Products

Check Point Endpoint Security Client

PT-2019-19053 · Check Point · Check Point Endpoint Security Client

CVE-2019-8459

Weakness Enumeration

Related Identifiers

Affected Products

References · 3