Check Point Response to CVE-2024-0105 and CVE-2024-0106 - NVIDIA Firmware Vulnerabilities

Cause NVIDIA ConnectX Firmware contains a vulnerability where an attacker may cause an improper handling of insufficient privileges issue. Symptoms - These Check Point Line Cards and appliances contain network interfaces with potentially vulnerable NVIDIA firmware versions see CVE-2024-0105 and...

CVE-2024-24919: Check Point’s Quantum Gateway comes under Attack as Hackers exploit Zero-Day Vulnerability

Active Exploits target Check Point Security Gateway Zero-Day Information Disclosure flaw Check Point Cybersecurity has issued hotfixes to address a zero-day vulnerability in its VPNs that has been exploited to gain remote access to firewalls and potentially infiltrate corporate networks. On...

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Checkpoint Quantum_Spark_Firmware

Exploit for CVE-2024-24919 Description This Python script...

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Checkpoint Quantum_Spark_Firmware

CVE-2024-24919-Check-Point-Remote-Access-VPN CVE-2024-24919...

Check Point Quantum Security Gateways Information Disclosure Vulnerability

Check Point Quantum Security Gateways contain an unspecified information disclosure vulnerability. The vulnerability potentially allows an attacker to access information on Gateways connected to the internet, with IPSec VPN, Remote Access VPN or Mobile Access enabled. This issue affects several...

Check Point Warns of Zero-Day Attacks on its VPN Gateway Products

Check Point is warning of a zero-day vulnerability in its Network Security gateway products that threat actors have exploited in the wild. Tracked as CVE-2024-24919 CVSS score: 8.6, the issue impacts CloudGuard Network, Quantum Maestro, Quantum Scalable Chassis, Quantum Security Gateways, and...

Preventative Hotfix for CVE-2024-24919 - Quantum Gateway Information Disclosure

Solution This article refers to Quantum Security Gateways running Gaia OS and CloudGuard Network Security. For Quantum Spark Gateways that run a Gaia Embedded OS, see sk182357. Following our security update on May 27, 2024, Check Point's dedicated task force continues investigating attempts to ga...

PT-2024-3801

Name of the Vulnerable Software and Affected Versions Check Point Security Gateways versions R77.20 through R81.20 Check Point CloudGuard Network affected versions not specified Check Point Quantum Maestro affected versions not specified Check Point Quantum Scalable Chassis affected versions not...

Check Point Response to CVE-2022-21449 - Java "Psychic Signatures"

Symptoms - On April 20, 2022, security researcher Neil Madden published a blog post in which he provided details about a newly disclosed vulnerability in Java, CVE-2022-21449 or "Psychic Signatures". This security vulnerability originates in an incorrect implementation of the ECDSA signature...

Check Point CloudGuard Controller fails to connect to a VMware vCenter Data Center in R80.20.M2

...