Lucene search

[email protected]NVD:CVE-2024-24919

HistoryMay 28, 2024 - 7:15 p.m.

CVE-2024-24919

2024-05-2819:15:10

CWE-200

[email protected]

web.nvd.nist.gov

nvd

cve-2024-24919

attacker

information

remote access vpn

mobile access software blades

security fix

vulnerability

CVSS3

8.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

AI Score

8.3

Confidence

High

EPSS

0.945

Percentile

99.3%

JSON

Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected to the internet and enabled with remote Access VPN or Mobile Access Software Blades. A Security fix that mitigates this vulnerability is available.

Affected configurations

Nvd

Node

checkpointquantum_security_gateway_firmwareMatchr80.40

AND

checkpointquantum_security_gatewayMatch-

Node

checkpointcloudguard_network_securityMatchr80.40

checkpointcloudguard_network_securityMatchr81.0

checkpointcloudguard_network_securityMatchr81.10

checkpointcloudguard_network_securityMatchr81.20

Node

checkpointquantum_security_gateway_firmwareMatchr81.20

AND

checkpointquantum_security_gatewayMatch-

Node

checkpointquantum_security_gateway_firmwareMatchr81.10

AND

checkpointquantum_security_gatewayMatch-

Node

checkpointquantum_security_gateway_firmwareMatchr81.0

AND

checkpointquantum_security_gatewayMatch-

Node

checkpointquantum_spark_firmwareMatchr81.10

AND

checkpointquantum_sparkMatch-

Node

checkpointquantum_spark_firmwareMatchr80.20

AND

checkpointquantum_sparkMatch-

VendorProductVersionCPE
checkpointquantum_security_gateway_firmwarer80.40cpe:2.3:o:checkpoint:quantum_security_gateway_firmware:r80.40:*:*:*:*:*:*:*
checkpointquantum_security_gateway-cpe:2.3:h:checkpoint:quantum_security_gateway:-:*:*:*:*:*:*:*
checkpointcloudguard_network_securityr80.40cpe:2.3:a:checkpoint:cloudguard_network_security:r80.40:*:*:*:*:*:*:*
checkpointcloudguard_network_securityr81.0cpe:2.3:a:checkpoint:cloudguard_network_security:r81.0:*:*:*:*:*:*:*
checkpointcloudguard_network_securityr81.10cpe:2.3:a:checkpoint:cloudguard_network_security:r81.10:*:*:*:*:*:*:*
checkpointcloudguard_network_securityr81.20cpe:2.3:a:checkpoint:cloudguard_network_security:r81.20:*:*:*:*:*:*:*
checkpointquantum_security_gateway_firmwarer81.20cpe:2.3:o:checkpoint:quantum_security_gateway_firmware:r81.20:*:*:*:*:*:*:*
checkpointquantum_security_gateway_firmwarer81.10cpe:2.3:o:checkpoint:quantum_security_gateway_firmware:r81.10:*:*:*:*:*:*:*
checkpointquantum_security_gateway_firmwarer81.0cpe:2.3:o:checkpoint:quantum_security_gateway_firmware:r81.0:*:*:*:*:*:*:*
checkpointquantum_spark_firmwarer81.10cpe:2.3:o:checkpoint:quantum_spark_firmware:r81.10:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
checkpoint	quantum_security_gateway_firmware	r80.40	cpe:2.3:o:checkpoint:quantum_security_gateway_firmware:r80.40:::::::*
checkpoint	quantum_security_gateway	-	cpe:2.3:h:checkpoint:quantum_security_gateway:-:::::::*
checkpoint	cloudguard_network_security	r80.40	cpe:2.3:a:checkpoint:cloudguard_network_security:r80.40:::::::*
checkpoint	cloudguard_network_security	r81.0	cpe:2.3:a:checkpoint:cloudguard_network_security:r81.0:::::::*
checkpoint	cloudguard_network_security	r81.10	cpe:2.3:a:checkpoint:cloudguard_network_security:r81.10:::::::*
checkpoint	cloudguard_network_security	r81.20	cpe:2.3:a:checkpoint:cloudguard_network_security:r81.20:::::::*
checkpoint	quantum_security_gateway_firmware	r81.20	cpe:2.3:o:checkpoint:quantum_security_gateway_firmware:r81.20:::::::*
checkpoint	quantum_security_gateway_firmware	r81.10	cpe:2.3:o:checkpoint:quantum_security_gateway_firmware:r81.10:::::::*
checkpoint	quantum_security_gateway_firmware	r81.0	cpe:2.3:o:checkpoint:quantum_security_gateway_firmware:r81.0:::::::*
checkpoint	quantum_spark_firmware	r81.10	cpe:2.3:o:checkpoint:quantum_spark_firmware:r81.10:::::::*