18 matches found
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2026-42271link is external BerriAI LiteLLM Command Injection Vulnerability CVE-2026-50751link is external Check Point Security Gateway Improper Authentication...
Check Point Security Gateway 安全漏洞
Check Point Security Gateway is a series of network security gateway devices developed by the Israeli company Check Point. There is a security vulnerability in Check Point Security Gateway, which arises when the identity-aware module based on browser authentication is enabled, allowing...
EUVD-2014-8779
Malware in sbrugna...
EUVD-2013-7122
Malware in sbrugna...
EUVD-2014-8778
Malware in sbrugna...
EUVD-2014-8777
Malware in sbrugna...
CVE-2013-7350
Multiple unspecified vulnerabilities in Check Point Security Gateway 80 R71.x before R71.45 730159141 and R75.20.x before R75.20.4 and 600 and 1100 appliances R75.20.x before R75.20.42 have unknown impact and attack vectors related to "important security fixes."...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Checkpoint Quantum_Spark_Firmware
CVE-2024-24919---Exploit-Script Deskripsi CVE-2024-24919 adal...
Check Point Security Gateway Arbitrary File Read
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Check Point Security Gateway Arbitrary File Read', 'Description' = %q This module leverages an unauthenticated arbitrary root file read...
Check Point Security Gateway Arbitrary File Read
This module leverages an unauthenticated arbitrary root file read vulnerability for Check Point Security Gateway appliances. When the IPSec VPN or Mobile Access blades are enabled on affected devices, traversal payloads can be used to read any files on the local file system. Password hashes read...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Checkpoint Quantum_Spark_Firmware
Check Point Security Gateway RCE Exploit Tool CVE-2024-249...
Check Point Security Gateway - Information Disclosure (Unauthenticated)
Exploit Title: Check Point Security Gateway - Information Disclosure Unauthenticated Exploit Author: Yesith Alvarez Vendor Homepage: https://support.checkpoint.com/results/sk/sk182336 Version: R77.20 EOL, R77.30 EOL, R80.10 EOL, R80.20 EOL, R80.20.x, R80.20SP EOL, R80.30 EOL, R80.30SP EOL, R80.40...
The multiple vulnerabilities of Check Point Security Gateway firewalls models series 80, 600, and 1000 involve deficiencies in access control. This allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The multiple vulnerabilities of Check Point Security Gateway Series 80, 600, and 1000 are related to deficiencies in access control for certain functions. Exploitation of these vulnerabilities could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of protect...
Cross site request forgery (csrf)
Unspecified vulnerability in Check Point Security Gateway R77 and R77.10, when the 1 URL Filtering or 2 Identity Awareness blade is used, allows remote attackers to cause a denial of service crash via vectors involving an HTTPS request...
CVE-2014-8951
Unspecified vulnerability in Check Point Security Gateway R75, R76, R77, and R77.10, when UserCheck is enabled and the 1 Application Control, 2 URL Filtering, 3 DLP, 4 Threat Emulation, 5 Anti-Bot, or 6 Anti-Virus blade is used, allows remote attackers to cause a denial of service fwk0 process...
CVE-2014-8952
CVE-2014-8952 affects Check Point Security Gateway versions R75.40VS, R75.45, R75.46, R75.47, R76, R77, and R77.10. Connected documents identify a root cause described as a race condition in the modules (IPS blade, IPsec Remote Access, Mobile Access/SSL VPN blade, SSL Network Extender, Identify A...
CVE-2014-8950
The CVE-2014-8950 entry concerns Check Point Security Gateway versions R77 and R77.10. The vulnerability affects the URL Filtering and Identity Awareness blades, where an HTTPS request can trigger a denial-of-service (crash). The available documents confirm the affected product and blades, and th...
CVE-2014-8952
Multiple unspecified vulnerabilities in Check Point Security Gateway R75.40VS, R75.45, R75.46, R75.47, R76, R77, and R77.10, when the 1 IPS blade, 2 IPsec Remote Access, 3 Mobile Access / SSL VPN blade, 4 SSL Network Extender, 5 Identify Awareness blade, 6 HTTPS Inspection, 7 UserCheck, or 8 Data...