Check Point Gaia Operating System Privilege Escalation

medium Nessus Plugin ID 107072

Synopsis

The remote host is missing a vendor-supplied security patch.

Description

The remote host is running a version of Gaia OS which is affected by an issue where low privileged users authenticated to the Gaia clish shell may execute arbitrary code as admin / root.

Solution

Update to an unaffected version or apply vendor-supplied hotfix.

See Also

https://www.tenable.com/security/research/tra-2018-04

http://www.nessus.org/u?d0bf2e20

Plugin Details

Severity: Medium

ID: 107072

File Name: check_point_gaia_privilege_escalation.nasl

Version: 1.2

Type: local

Family: Firewalls

Published: 2/28/2018

Updated: 8/13/2019

Supported Sensors: Nessus

Risk Information

CVSS Score Rationale: Score based on analysis of the vendor advisory.

CVSS v2

Risk Factor: Medium

Base Score: 6.5

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

CVSS Score Source: manual

CVSS v3

Risk Factor: Medium

Base Score: 6.3

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Vulnerability Information

CPE: cpe:/o:check_point:gaia_os

Required KB Items: Host/Check_Point/version, Host/Check_Point/installed_hotfixes

Patch Publication Date: 2/26/2018

Vulnerability Publication Date: 2/26/2018