CVE-2022-23744 - OpenCVE

Check Point Endpoint before version E86.50 failed to protect against specific registry change which allowed to disable endpoint protection by a local administrator.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:L/AC:L/Au:N/C:N/I:N/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Checkpoint	Endpoint Security Harmony Endpoint

Configuration 1 [-]

OR	cpe:2.3:a:checkpoint:endpoint_security:e83:::::::*
	cpe:2.3:a:checkpoint:endpoint_security:e84:::::::*
	cpe:2.3:a:checkpoint:endpoint_security:e85:::::::*
	cpe:2.3:a:checkpoint:endpoint_security:e86.10:::::::*
	cpe:2.3:a:checkpoint:endpoint_security:e86.20:::::::*
	cpe:2.3:a:checkpoint:endpoint_security:e86.30:::::::*
	cpe:2.3:a:checkpoint:endpoint_security:e86.40:::::::*
	cpe:2.3:a:checkpoint:harmony_endpoint:e83:::::::*
	cpe:2.3:a:checkpoint:harmony_endpoint:e84:::::::*
	cpe:2.3:a:checkpoint:harmony_endpoint:e85:::::::*
	cpe:2.3:a:checkpoint:harmony_endpoint:e86.10:::::::*
	cpe:2.3:a:checkpoint:harmony_endpoint:e86.20:::::::*
	cpe:2.3:a:checkpoint:harmony_endpoint:e86.30:::::::*
	cpe:2.3:a:checkpoint:harmony_endpoint:e86.40:::::::*

No data.

References

Link	Providers
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk179609

History

No history.

MITRE

Status: PUBLISHED

Assigner: checkpoint

Published: 2022-07-07T15:51:44

Updated: 2024-08-03T03:51:45.906Z

Reserved: 2022-01-19T00:00:00

Link: CVE-2022-23744

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2022-07-07T16:15:09.063

Modified: 2022-07-15T14:55:40.780

Link: CVE-2022-23744

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "Enterprise Endpoint Security Windows Clients.", "vendor": "n/a", "versions": [{"status": "affected", "version": "before E86.50"}]}], "descriptions": [{"lang": "en", "value": "Check Point Endpoint before version E86.50 failed to protect against specific registry change which allowed to disable endpoint protection by a local administrator."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-470", "description": "CWE-470: Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2022-07-08T17:07:36", "orgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45", "shortName": "checkpoint"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk179609"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@checkpoint.com", "ID": "CVE-2022-23744", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Enterprise Endpoint Security Windows Clients.", "version": {"version_data": [{"version_value": "before E86.50"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Check Point Endpoint before version E86.50 failed to protect against specific registry change which allowed to disable endpoint protection by a local administrator."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-470: Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')"}]}]}, "references": {"reference_data": [{"name": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk179609", "refsource": "MISC", "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk179609"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T03:51:45.906Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk179609"}]}]}, "cveMetadata": {"assignerOrgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45", "assignerShortName": "checkpoint", "cveId": "CVE-2022-23744", "datePublished": "2022-07-07T15:51:44", "dateReserved": "2022-01-19T00:00:00", "dateUpdated": "2024-08-03T03:51:45.906Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e83:*:*:*:*:*:*:*", "matchCriteriaId": "7328CB79-D332-40DE-923F-2E15F55059FB", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e84:*:*:*:*:*:*:*", "matchCriteriaId": "2D42E00B-D31F-4474-9B6C-EF976C49487B", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e85:*:*:*:*:*:*:*", "matchCriteriaId": "D2476021-2883-4895-87A6-7E22C3EC7E59", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e86.10:*:*:*:*:*:*:*", "matchCriteriaId": "98319B9E-2E17-428C-B830-99A06398877E", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e86.20:*:*:*:*:*:*:*", "matchCriteriaId": "ACEEC052-70AA-4E2B-864C-8D2EDF213846", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e86.30:*:*:*:*:*:*:*", "matchCriteriaId": "9278FDB9-261A-46C1-AF87-F5F3C89061FE", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e86.40:*:*:*:*:*:*:*", "matchCriteriaId": "1817EFFD-8CEF-4F9C-BE60-FB7582682E56", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:harmony_endpoint:e83:*:*:*:*:*:*:*", "matchCriteriaId": "14C59AE8-CC3E-4692-9705-EAF32BDBE19A", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:harmony_endpoint:e84:*:*:*:*:*:*:*", "matchCriteriaId": "2E4093F5-3F40-415C-B0F9-1D17DE15891E", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:harmony_endpoint:e85:*:*:*:*:*:*:*", "matchCriteriaId": "7A683B31-6BD5-4FB6-9112-C84CAEAAF410", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:harmony_endpoint:e86.10:*:*:*:*:*:*:*", "matchCriteriaId": "E63A3DBA-A575-4DCA-95BD-A19B0DB4D934", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:harmony_endpoint:e86.20:*:*:*:*:*:*:*", "matchCriteriaId": "C9A288DC-507B-4B17-964E-9F93EC6D7795", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:harmony_endpoint:e86.30:*:*:*:*:*:*:*", "matchCriteriaId": "BF816B77-93FE-49F2-9B1B-04AAEFAD164D", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:harmony_endpoint:e86.40:*:*:*:*:*:*:*", "matchCriteriaId": "8B0E733B-86AC-4495-9900-06B17AA4FAE2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Check Point Endpoint before version E86.50 failed to protect against specific registry change which allowed to disable endpoint protection by a local administrator."}, {"lang": "es", "value": "Check Point Endpoint antes de la versi\u00f3n E86.50 no proteg\u00eda contra un cambio espec\u00edfico en el registro que permit\u00eda desactivar la protecci\u00f3n de los puntos finales por un administrador local"}], "id": "CVE-2022-23744", "lastModified": "2022-07-15T14:55:40.780", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 2.3, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 0.8, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-07-07T16:15:09.063", "references": [{"source": "cve@checkpoint.com", "tags": ["Vendor Advisory"], "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk179609"}], "sourceIdentifier": "cve@checkpoint.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-470"}], "source": "cve@checkpoint.com", "type": "Secondary"}]}