Local privilege escalation in Harmony SASE Windows Agent_CVE-2025-9142

7.5 / 10

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H

Description

A local user can trigger Harmony SASE Windows client to write or delete files outside the intended certificate working directory.

Basic Information

ID CVE-2025-9142

Source checkpoint

Published Jan 14, 2026 at 14:30

Modified Jan 14, 2026 at 14:50

Affected Product

Vendor checkpoint

Product Hramony SASE

Version Check Point Harmony SASE Windows Agent versions prior to 12.2

Affected Versions checkpoint Hramony SASE Check Point Harmony SASE Windows Agent versions prior to 12.2

CWE Classification

CWE-22

References

support.checkpoint.com /results/sk/sk184557

{
    "lastseen": "",
    "description": "A local user can trigger Harmony SASE Windows client to write or delete files outside the intended certificate working directory.",
    "published": "2026-01-14T14:30:48.630Z",
    "modified": "2026-01-14T14:50:03.652Z",
    "type": "cve",
    "title": "Local privilege escalation in Harmony SASE Windows Agent",
    "source": "checkpoint",
    "references": "https://support.checkpoint.com/results/sk/sk184557",
    "id": "CVE-2025-9142",
    "bulletinFamily": "",
    "cwe": [
        "CWE-22"
    ],
    "cvelist": null,
    "sourceData": "checkpoint Hramony SASE Check Point Harmony SASE Windows Agent versions prior to 12.2",
    "sourceHref": "",
    "cvss": {
        "score": 7.5,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Hramony SASE",
    "version": "Check Point Harmony SASE Windows Agent versions prior to 12.2",
    "vendor": "checkpoint",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}