CVE-2022-23743

Name of the Vulnerable Software and Affected Versions Check Point ZoneAlarm versions prior to 15.8.200.19118

Description The issue allows a local actor to escalate privileges during the upgrade process. Additionally, weak permissions in the ProgramDataCheckPointZoneAlarmDataUpdates directory enable a local attacker to execute an arbitrary file write, leading to code execution as the local system.

Recommendations For versions prior to 15.8.200.19118, update to version 15.8.200.19118 or later to resolve the issue. As a temporary workaround, consider restricting access to the ProgramDataCheckPointZoneAlarmDataUpdates directory to minimize the risk of exploitation.