CVE-2019-8461

CVE-2019-8461

Vendor N/A
Product Check Point Endpoint Security Initial Client for Windows
Weakness CWE-114
Published August 29, 2019
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoint Client installed. An attacker can leverage this to gain LPE using a specially crafted DLL placed in any PATH location accessible with write permissions to the user.

Key dates

02Disclosure timeline

August 29, 2019 CVE published
August 4, 2024 Record updated