SSL Network Extender Client for Linux before build 800008302 reveals part of the contents of the configuration file supplied, which allows partially disclosing files to which the user did not have access.
References
Link | Resource |
---|---|
https://supportcontent.checkpoint.com/solutions?id=sk173513 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
17 Jun 2021, 16:05
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 5.3 |
CWE | CWE-209 | |
CPE | cpe:2.3:a:checkpoint:ssl_network_extender:r80.20:*:*:*:*:linux:*:* cpe:2.3:a:checkpoint:ssl_network_extender:r80.10:*:*:*:*:linux:*:* cpe:2.3:a:checkpoint:ssl_network_extender:r80.30:*:*:*:*:linux:*:* cpe:2.3:a:checkpoint:ssl_network_extender:r81:*:*:*:*:linux:*:* cpe:2.3:a:checkpoint:ssl_network_extender:r80.40:*:*:*:*:linux:*:* |
|
References | (MISC) https://supportcontent.checkpoint.com/solutions?id=sk173513 - Vendor Advisory |
08 Jun 2021, 15:17
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-06-08 14:15
Updated : 2024-02-04 21:47
NVD link : CVE-2021-30357
Mitre link : CVE-2021-30357
CVE.ORG link : CVE-2021-30357
JSON object : View
Products Affected
checkpoint
- ssl_network_extender
CWE
CWE-209
Generation of Error Message Containing Sensitive Information