Local user may lead to privilege escalation using Gaia Portal hostnames page.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/173918/Checkpoint-Gaia-Portal-R81.10-Remote-Command-Execution.html | Third Party Advisory |
http://seclists.org/fulldisclosure/2023/Aug/4 | Mailing List Third Party Advisory |
http://seclists.org/fulldisclosure/2023/Jul/43 | Not Applicable |
https://pentests.nl/pentest-blog/cve-2023-28130-command-injection-in-check-point-gaia-portal/ | Exploit Third Party Advisory |
https://support.checkpoint.com/results/sk/sk181311 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: checkpoint
Published: 2023-07-26T10:57:02.708Z
Updated: 2023-07-30T15:19:58.435Z
Reserved: 2023-03-10T21:20:19.555Z
Link: CVE-2023-28130
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-07-26T11:15:09.550
Modified: 2023-08-02T20:45:07.220
Link: CVE-2023-28130
JSON object: View
Redhat Information
No data.