CVE-2021-30358

{"id": "CVE-2021-30358", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 6.8, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.2, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.2}]}, "published": "2021-10-19T14:15:08.243", "references": [{"url": "https://supportcontent.checkpoint.com/solutions?id=sk142952", "tags": ["Vendor Advisory"], "source": "cve@checkpoint.com"}, {"url": "https://supportcontent.checkpoint.com/solutions?id=sk175806", "tags": ["Patch", "Vendor Advisory"], "source": "cve@checkpoint.com"}, {"url": "https://supportcontent.checkpoint.com/solutions?id=sk142952", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://supportcontent.checkpoint.com/solutions?id=sk175806", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "cve@checkpoint.com", "description": [{"lang": "en", "value": "CWE-78"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-78"}]}], "descriptions": [{"lang": "en", "value": "Mobile Access Portal Native Applications who's path is defined by the administrator with environment variables may run applications from other locations by the Mobile Access Portal Agent."}, {"lang": "es", "value": "Las Aplicaciones Nativas del Portal de Acceso M\u00f3vil cuya ruta est\u00e1 definida por el administrador con variables de entorno pueden ejecutar aplicaciones desde otras ubicaciones por el agente del portal de acceso m\u00f3vil"}], "lastModified": "2024-11-21T06:03:56.573", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:checkpoint:mobile_access_portal_agent:r80.20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "69158B73-009F-4260-A497-FD1DF60E219D"}, {"criteria": "cpe:2.3:a:checkpoint:mobile_access_portal_agent:r80.30:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1A2D8E97-6A75-449A-A9E5-7130B84DAAC4"}, {"criteria": "cpe:2.3:a:checkpoint:mobile_access_portal_agent:r80.40:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E83F57D6-342D-4C29-8FEC-BF2C4FAF2F92"}, {"criteria": "cpe:2.3:a:checkpoint:mobile_access_portal_agent:r81:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A13A20F4-3CD7-47FD-A9A2-9E2FEE1BE6E5"}, {"criteria": "cpe:2.3:a:checkpoint:mobile_access_portal_agent:r81.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4C0EFA86-2BED-470F-98B4-7B78DE59E66F"}], "operator": "OR"}]}], "sourceIdentifier": "cve@checkpoint.com"}