Check Point Identity Agent for a Terminal Server (CVE-2025-8304 and CVE-2025-8305)

Two security vulnerabilities has been discovered in the Check Point Identity Agent for Terminal Server in version below 81.084.0000. The vulnerabilities has a CCVS 3.1 score of 6.5

CVE-2025-8304 describes an issue that sensitive information is accessible in the Windows Registry.

CVE-2025-8305 describes an issue that sensitive information is accessible in the logs files of the Check Point Identity Agent for a Terminal Server.

Vulnerability description

An authenticated local user can obtain information that allows claiming security policy rules of another user due to sensitive information being printed in plaintext in Identity Agent for Terminal Services debug files.

Solution

Check Point provided a fix for these vulnerabilities in Identity Agent for a Terminal Server in version 81.084.0000 for MUH1 and MUH2 and can be downloaded from sk134312

More information about this vulnerability can be found in sk184263 and sk184264