Unrated severityNVD Advisory· Published Oct 22, 2021· Updated Aug 3, 2024

CVE-2021-30359

Description

The Harmony Browse and the SandBlast Agent for Browsers installers must have admin privileges to execute some steps during the installation. Because the MS Installer allows regular users to repair their installation, an attacker running an installer before 90.08.7405 can start the installation repair and place a specially crafted binary in the repair folder, which runs with the admin privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Checkpoint/Harmony Browsellm-create
Range: <90.08.7405
Checkpoint/SandBlast Agent for Browsersllm-create
Range: <90.08.7405

Patches

Vulnerability mechanics

References

github.com/mandiant/Vulnerability-Disclosures/blob/master/MNDT-2021-0007/MNDT-2021-0007.mdmitrex_refsource_MISC
supportcontent.checkpoint.com/solutionsmitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000