CVE-2020-6020 Information

Description

Check Point Security Management’s Internal CA web management before Jumbo HFAs R80.10 Take 278 R80.20 Take 160 R80.30 Take 210 and R80.40 Take 38 can be manipulated to run commands as a high privileged user or crash due to weak input validation on inputs by a trusted management administrator.

CVSS Vector

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L

Reference

https://supportcontent.checkpoint.com/solutions?id=sk142952

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction Required

HIGH

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

LOW

Base Severity

6.4