Description

SSL Network Extender Client for Linux before build 800008302 reveals part of the contents of the configuration file supplied, which allows partially disclosing files to which the user did not have access.

Related CPE's

a

checkpoint

ssl_network_extender

5

References

https://supportcontent.checkpoint.com/solutions?id=sk173513

Vendor Advisory

Weaknesses

[email protected]

Primary
CWE-209

[email protected]

Secondary
CWE-209

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5.3 · Medium

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-06-08T14:15:07.973

4 years ago

Last modified

2021-06-17T16:05:22.110

4 years ago