CVE-2021-30359
HIGHHarmony Browse & SandBlast Agent <90.08.7405 - Privilege Escalation
Title source: llmDescription
The Harmony Browse and the SandBlast Agent for Browsers installers must have admin privileges to execute some steps during the installation. Because the MS Installer allows regular users to repair their installation, an attacker running an installer before 90.08.7405 can start the installation repair and place a specially crafted binary in the repair folder, which runs with the admin privileges.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_misc
https://supportcontent.checkpoint.com/solutions?id=sk175968
Third Party Advisory x_refsource_misc
https://github.com/mandiant/Vulnerability-Disclosures/blob/master/MNDT-2021-0007/MNDT-2021-0007.md
Scores
CVSS v3
7.8
EPSS
0.0006
EPSS Percentile
18.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-427
Status
published
Products (2)
checkpoint/harmony_browse
< 90.08.7405
checkpoint/sandblast_agent_for_browsers
< 90.08.7405
Published
Oct 22, 2021
Tracked Since
Feb 18, 2026