Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

20 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.6 views

EUVD-2022-28682

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00265EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 7:39 p.m.11 views

CVE-2021-30357

SSL Network Extender Client for Linux before build 800008302 reveals part of the contents of the configuration file supplied, which allows partially disclosing files to which the user did not have access...

5.3CVSS6.8AI score0.29976EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 9:53 a.m.9 views

CVE-2011-1827

Multiple unspecified vulnerabilities in Check Point SSL Network Extender SNX, SecureWorkSpace, and Endpoint Security On-Demand, as distributed by SecurePlatform, IPSO6, Connectra, and VSX, allow remote attackers to execute arbitrary code via vectors involving a 1 ActiveX control or 2 Java applet...

9.3CVSS8AI score0.02624EPSS
Exploits1References1
GithubExploit
GithubExploitadded 2024/05/31 11:29 a.m.305 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Checkpoint Quantum_Spark_Firmware

CVE-2024-24919 Exploit script for CVE-2024-249...

8.6CVSS9AI score0.94342EPSS
Exploits52
GithubExploit
GithubExploitadded 2024/05/31 8:1 a.m.271 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Checkpoint Quantum_Spark_Firmware

CVE-2024-24919 Checker A simple bash script to check for the...

8.6CVSS8.9AI score0.94342EPSS
Exploits52
GithubExploit
GithubExploitadded 2024/05/30 4:23 p.m.247 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Checkpoint Quantum_Spark_Firmware

CVE-2024-24919 I'm not responsible for anything : Instala...

8.6CVSS9AI score0.94342EPSS
Exploits52
NVD
NVDadded 2022/11/30 7:15 p.m.14 views

CVE-2022-23746

The IPsec VPN blade has a dedicated portal for downloading and connecting through SSL Network Extender SNX. If the portal is configured for username/password authentication, it is vulnerable to a brute-force attack on usernames and passwords...

7.5CVSS0.00265EPSS
Exploits0References1
Prion
Prionadded 2022/11/30 7:15 p.m.17 views

Authentication flaw

The IPsec VPN blade has a dedicated portal for downloading and connecting through SSL Network Extender SNX. If the portal is configured for username/password authentication, it is vulnerable to a brute-force attack on usernames and passwords...

5CVSS7.5AI score0.00265EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2022/11/30 12:0 a.m.12 views

CVE-2022-23746

The IPsec VPN blade has a dedicated portal for downloading and connecting through SSL Network Extender SNX. If the portal is configured for username/password authentication, it is vulnerable to a brute-force attack on usernames and passwords...

7.7AI score0.00265EPSS
Exploits0References1
NVD
NVDadded 2021/06/08 2:15 p.m.10 views

CVE-2021-30357

SSL Network Extender Client for Linux before build 800008302 reveals part of the contents of the configuration file supplied, which allows partially disclosing files to which the user did not have access...

5.3CVSS0.29976EPSS
Exploits1References1
Prion
Prionadded 2021/06/08 2:15 p.m.22 views

Design/Logic Flaw

SSL Network Extender Client for Linux before build 800008302 reveals part of the contents of the configuration file supplied, which allows partially disclosing files to which the user did not have access...

5CVSS5.3AI score0.29976EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2021/06/08 1:31 p.m.117 views

CVE-2021-30357

CVE-2021-30357 affects SSL Network Extender Client for Linux prior to build 800008302. The SNX binary runs with root privileges and can disclose parts of the supplied SNX config file, enabling partial exposure of files the user should not access (e.g., sensitive system contents). Public PoCs demo...

5.3CVSS5.2AI score0.29976EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2021/06/08 1:31 p.m.15 views

CVE-2021-30357

SSL Network Extender Client for Linux before build 800008302 reveals part of the contents of the configuration file supplied, which allows partially disclosing files to which the user did not have access...

5.5AI score0.29976EPSS
Exploits1References1
NVD
NVDadded 2011/10/05 2:56 a.m.22 views

CVE-2011-1827

Multiple unspecified vulnerabilities in Check Point SSL Network Extender SNX, SecureWorkSpace, and Endpoint Security On-Demand, as distributed by SecurePlatform, IPSO6, Connectra, and VSX, allow remote attackers to execute arbitrary code via vectors involving a 1 ActiveX control or 2 Java applet...

9.3CVSS7.7AI score0.02624EPSS
Exploits1References4
Prion
Prionadded 2011/10/05 2:56 a.m.17 views

Design/Logic Flaw

Multiple unspecified vulnerabilities in Check Point SSL Network Extender SNX, SecureWorkSpace, and Endpoint Security On-Demand, as distributed by SecurePlatform, IPSO6, Connectra, and VSX, allow remote attackers to execute arbitrary code via vectors involving a 1 ActiveX control or 2 Java applet...

9.3CVSS8.3AI score0.02624EPSS
Exploits1References4Affected Software3
CVE
CVEadded 2011/10/05 1:0 a.m.114 views

CVE-2011-1827

CVE-2011-1827 : Multiple vulnerabilities in Check Point components (SSL Network Extender/SNX, SecureWorkSpace, Endpoint Security On-Demand) allow remote code execution via a signed ActiveX control or Java applet. Exploitation, as described by SEC Consult, involves loading a malicious page or docu...

9.3CVSS7.9AI score0.02624EPSS
Exploits1References4Affected Software3
Cvelist
Cvelistadded 2011/10/05 1:0 a.m.26 views

CVE-2011-1827

Multiple unspecified vulnerabilities in Check Point SSL Network Extender SNX, SecureWorkSpace, and Endpoint Security On-Demand, as distributed by SecurePlatform, IPSO6, Connectra, and VSX, allow remote attackers to execute arbitrary code via vectors involving a 1 ActiveX control or 2 Java applet...

7.6AI score0.02624EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2011/08/25 12:0 a.m.745 views

Check Point SSL Network Extender ActiveX Control Remote Code Execution

The version of the Check Point SSL Network Extender ActiveX control installed on the remote Windows host reportedly contains a remote code execution vulnerability. If an attacker can trick a user on the affected host into viewing a specially crafted HTML document, he can leverage this issue to...

9.3CVSS6.2AI score0.02624EPSS
Exploits1References3
securityvulns
securityvulnsadded 2011/08/17 12:0 a.m.67 views

SEC Consult SA-20110810-0 :: Client-side remote file upload & command execution in Check Point SSL VPN On-Demand applications - CVE-2011-1827

SEC Consult Vulnerability Lab Security Advisory 20110810-0 ======================================================================= title: Client-side remote file upload & command execution product: Check Point SSL VPN On-Demand applications signed Java applet and ActiveX control SSL Network...

9.3CVSS0.02624EPSS
Exploits1
securityvulns
securityvulnsadded 2011/03/15 12:0 a.m.34 views

Checkpoint VPN - Priviledge Escalation

It appears this bug has gone unoticed to vulnerability databases maintainers, very likely due to the lack of disclosure/publication. This usually means it's also not in compliance/patching systems and exposes customers to unecessary risk. To counteract I'd like to drop this note. Checkpoint SNX...

0.5AI score
Exploits0
Rows per page
Query Builder