Lucene search

[email protected]CVE-2024-24919

HistoryMay 28, 2024 - 7:15 p.m.

CVE-2024-24919

2024-05-2819:15:10

CWE-200

[email protected]

web.nvd.nist.gov

191

In Wild

111

check point

security gateways

vulnerability

cve-2024-24919

remote access vpn

mobile access

nvd

information disclosure

8.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.945 High

EPSS

Percentile

99.2%

JSON

Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected to the internet and enabled with remote Access VPN or Mobile Access Software Blades. A Security fix that mitigates this vulnerability is available.

Affected configurations

NVD

Node

checkpointquantum_security_gateway_firmwareMatchr80.40

AND

checkpointquantum_security_gatewayMatch-

Node

checkpointcloudguard_network_securityMatchr80.40

checkpointcloudguard_network_securityMatchr81.0

checkpointcloudguard_network_securityMatchr81.10

checkpointcloudguard_network_securityMatchr81.20

Node

checkpointquantum_security_gateway_firmwareMatchr81.20

AND

checkpointquantum_security_gatewayMatch-

Node

checkpointquantum_security_gateway_firmwareMatchr81.10

AND

checkpointquantum_security_gatewayMatch-

Node

checkpointquantum_security_gateway_firmwareMatchr81.0

AND

checkpointquantum_security_gatewayMatch-

Node

checkpointquantum_spark_firmwareMatchr81.10

AND

checkpointquantum_sparkMatch-

Node

checkpointquantum_spark_firmwareMatchr80.20

AND

checkpointquantum_sparkMatch-

CPENameOperatorVersion
checkpoint:quantum_security_gateway_firmwarecheckpoint quantum security gateway firmwareeqr80.40

CPE	Name	Operator	Version
checkpoint:quantum_security_gateway_firmware	checkpoint quantum security gateway firmware	eq	r80.40

CNA Affected

[
  {
    "product": "Check Point Quantum Gateway, Spark Gateway and CloudGuard Network",
    "vendor": "checkpoint",
    "versions": [
      {
        "status": "affected",
        "version": "Check Point Quantum Gateway and CloudGuard Network versions R81.20, R81.10, R81, R80.40 and Check Point Spark versions R81.10, R80.20."
      }
    ]
  }
]