CVE-2022-23744 : Check Point Endpoint before version E86.50 failed to protect against specific re

Check Point Endpoint before version E86.50 failed to protect against specific registry change which allowed to disable endpoint protection by a local administrator.

Published 2022-07-07 16:15:09

Updated 2022-07-15 14:55:41

Source Check Point Software Technologies Ltd.

View at NVD, CVE.org

Products affected by CVE-2022-23744

Checkpoint » Endpoint Security » Version: E83
cpe:2.3:a:checkpoint:endpoint_security:e83:*:*:*:*:*:*:*
Matching versions
Checkpoint » Endpoint Security » Version: E86.40
cpe:2.3:a:checkpoint:endpoint_security:e86.40:*:*:*:*:*:*:*
Matching versions
Checkpoint » Endpoint Security » Version: E86.30
cpe:2.3:a:checkpoint:endpoint_security:e86.30:*:*:*:*:*:*:*
Matching versions
Checkpoint » Endpoint Security » Version: E86.20
cpe:2.3:a:checkpoint:endpoint_security:e86.20:*:*:*:*:*:*:*
Matching versions
Checkpoint » Endpoint Security » Version: E86.10
cpe:2.3:a:checkpoint:endpoint_security:e86.10:*:*:*:*:*:*:*
Matching versions
Checkpoint » Endpoint Security » Version: E85
cpe:2.3:a:checkpoint:endpoint_security:e85:*:*:*:*:*:*:*
Matching versions
Checkpoint » Endpoint Security » Version: E84
cpe:2.3:a:checkpoint:endpoint_security:e84:*:*:*:*:*:*:*
Matching versions
Checkpoint » Harmony Endpoint » Version: E84
cpe:2.3:a:checkpoint:harmony_endpoint:e84:*:*:*:*:*:*:*
Matching versions
Checkpoint » Harmony Endpoint » Version: E85
cpe:2.3:a:checkpoint:harmony_endpoint:e85:*:*:*:*:*:*:*
Matching versions
Checkpoint » Harmony Endpoint » Version: E86.10
cpe:2.3:a:checkpoint:harmony_endpoint:e86.10:*:*:*:*:*:*:*
Matching versions
Checkpoint » Harmony Endpoint » Version: E86.20
cpe:2.3:a:checkpoint:harmony_endpoint:e86.20:*:*:*:*:*:*:*
Matching versions
Checkpoint » Harmony Endpoint » Version: E86.30
cpe:2.3:a:checkpoint:harmony_endpoint:e86.30:*:*:*:*:*:*:*
Matching versions
Checkpoint » Harmony Endpoint » Version: E86.40
cpe:2.3:a:checkpoint:harmony_endpoint:e86.40:*:*:*:*:*:*:*
Matching versions
Checkpoint » Harmony Endpoint » Version: E83
cpe:2.3:a:checkpoint:harmony_endpoint:e83:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2022-23744

EPSS FAQ

2.05%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 82 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2022-23744

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
2.1	LOW	AV:L/AC:L/Au:N/C:N/I:N/A:P	3.9	2.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
2.3	LOW	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L	0.8	1.4	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: High User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: Low

CWE ids for CVE-2022-23744

CWE-470 Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

The product uses external input with reflection to select which classes or code to use, but it does not sufficiently prevent the input from selecting improper classes or code.

Assigned by: cve@checkpoint.com (Secondary)

References for CVE-2022-23744

https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk179609

CVE-2022-23744 - Use of unprotected registry change to disable Endpoint protection
Vendor Advisory

Jump to

Vulnerability Details : CVE-2022-23744

Products affected by CVE-2022-23744

Exploit prediction scoring system (EPSS) score for CVE-2022-23744

CVSS scores for CVE-2022-23744

CWE ids for CVE-2022-23744

References for CVE-2022-23744