CVE-2021-30357

MEDIUM

SSL Network Extender Client <build 800008302 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-30357. PoCs published by joaovarelas.

AI-analyzed exploit summary The repository provides a detailed technical analysis of CVE-2021-30357, a privileged file read vulnerability in CheckPoint SNX VPN Linux Client. It explains the root cause (SETUID bit on the SNX binary) and demonstrates how arbitrary file contents can be leaked via error messages.

Description

SSL Network Extender Client for Linux before build 800008302 reveals part of the contents of the configuration file supplied, which allows partially disclosing files to which the user did not have access.

Exploits (1)

nomisec WRITEUP 6 stars
by joaovarelas · poc
https://github.com/joaovarelas/CVE-2021-30357_CheckPoint_SNX_VPN_PoC

The repository provides a detailed technical analysis of CVE-2021-30357, a privileged file read vulnerability in CheckPoint SNX VPN Linux Client. It explains the root cause (SETUID bit on the SNX binary) and demonstrates how arbitrary file contents can be leaked via error messages.

Classification
Writeup 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: CheckPoint VPN SNX Linux Client (version 800007075)
No auth needed
Prerequisites: Access to a system with the vulnerable SNX client installed
mistral-large-3 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1
Core References

Scores

CVSS v3 5.3
EPSS 0.2279
EPSS Percentile 97.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Details

CWE
CWE-209
Status published
Products (5)
checkpoint/ssl_network_extender r80.10
checkpoint/ssl_network_extender r80.20
checkpoint/ssl_network_extender r80.30
checkpoint/ssl_network_extender r80.40
checkpoint/ssl_network_extender r81
Published Jun 08, 2021
Tracked Since Feb 18, 2026