Back to search
CVE-2020-6014
Published: Oct 30, 2020
Modified: Aug 4, 2024
PUBLISHED
Description
Check Point Endpoint Security Client for Windows, with Anti-Bot or Threat Emulation blades installed, before version E83.20, tries to load a non-existent DLL during a query for the Domain Name. An attacker with administrator privileges can leverage this to gain code execution within a Check Point Software Technologies signed binary, where under certain circumstances may cause the client to terminate.
| Vendor | Product | Versions |
|---|---|---|
n/a | Check Point Endpoint Security Client for Windows | affected before E83.20 |
Weaknesses (CWE)
References
https://supportcontent.checkpoint.com/solutions?id=sk168081
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now