Home CVE-2021-30357 - Arbitrary file read as root in Check Point VPN client
Post
Cancel

CVE-2021-30357 - Arbitrary file read as root in Check Point VPN client

on Jun 20, 20212021-06-20T00:00:00+01:00
Updated Nov 122024-11-12T13:05:08+00:00 1 min read

image

Description

The software Check Point VPN SNX (SSL Network Extender) client v800007075 for Linux installer sets SUID bit causing it to run as a privileged used on the system. It also has an information leak vulnerability that could be leveraged to partially read any file on the system by specifying its filepath as a VPN configuration file, causing it to throw an exception and print a verbose/debug thus revealing the file contents (e.g. /etc/shadow).

https://nvd.nist.gov/vuln/detail/CVE-2021-30357

cve cve-2021-30357 check point software vpn client arbitrary file read root vulnerability
This post is licensed under CC BY 4.0 by the author.
Recent Update
Contents

Bug Bounty - Session Takeover in BMW Shops via XSS - HackerOne

Samourai Wallet - Analysis of PIN Authentication & Cryptographic Implementation

© 2024 . Some rights reserved.

Powered by Jekyll with Chirpy theme.