CVE-2021-30357
MEDIUMSSL Network Extender Client <build 800008302 - Info Disclosure
Title source: llmDescription
SSL Network Extender Client for Linux before build 800008302 reveals part of the contents of the configuration file supplied, which allows partially disclosing files to which the user did not have access.
Exploits (1)
nomisec
WRITEUP
6 stars
by joaovarelas · poc
https://github.com/joaovarelas/CVE-2021-30357_CheckPoint_SNX_VPN_PoC
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://supportcontent.checkpoint.com/solutions?id=sk173513
Scores
CVSS v3
5.3
EPSS
0.2998
EPSS Percentile
96.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Details
CWE
CWE-209
Status
published
Products (5)
checkpoint/ssl_network_extender
r80.10
checkpoint/ssl_network_extender
r80.20
checkpoint/ssl_network_extender
r80.30
checkpoint/ssl_network_extender
r80.40
checkpoint/ssl_network_extender
r81
Published
Jun 08, 2021
Tracked Since
Feb 18, 2026