Medium severity4.1NVD Advisory· Published May 26, 2026· Updated May 26, 2026
CVE-2026-48136
CVE-2026-48136
Description
When Compliance is enabled on Check Point Multi-Domain Management, an authenticated administrator with read-write access to one Management Domain (CMA) can modify stored metadata associated with Compliance Best Practices in another Management Domain, where the administrator has no access permissions, bypassing Role-Based Access Control (RBAC).
Affected products
1Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.