CVE-2022-23745 — HIGH (7.5)

Q: How severe is CVE-2022-23745?

CVE-2022-23745 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2022-23745?

Check the references section above for vendor advisories and patch information. Affected products include: Checkpoint Capsule Workspace.

Vulnerability Description

A potential memory corruption issue was found in Capsule Workspace Android app (running on GrapheneOS). This could result in application crashing but could not be used to gather any sensitive information.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Checkpoint	Capsule Workspace	>= 8.0, < 8.2.2

Related Weaknesses (CWE)

CWE-787 CWE-1218

References

https://supportcenter.us.checkpoint.com/supportcenter/portal?eventSubmit_doGovieVendor Advisory
https://supportcenter.us.checkpoint.com/supportcenter/portal?eventSubmit_doGovieVendor Advisory

FAQ

What is CVE-2022-23745?

CVE-2022-23745 is a vulnerability with a CVSS score of 7.5 (HIGH). A potential memory corruption issue was found in Capsule Workspace Android app (running on GrapheneOS). This could result in application crashing but could not be used to gather any sensitive informat...

How severe is CVE-2022-23745?

CVE-2022-23745 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-23745?

Check the references section above for vendor advisories and patch information. Affected products include: Checkpoint Capsule Workspace.