3 matches found
CVE-2024-52888
CVE-2024-52888 affects Check Point Mobile Access (R82 and earlier). An authenticated end-user may trigger a script during the portal’s display of a directory or file properties, consistent with a stored XSS issue in the File Share access path. The observable behavior is a script execution within ...
CVE-2024-52887
CVE-2024-52887 affects Check Point Mobile Access (R82 and prior). An authenticated end-user can set a specially crafted SNX bookmark that causes their browser to execute a script when accessing the bookmark list (stored/self-XSS in the ‘favorites’ dialog). Exact impact details are not quantified ...
CVE-2024-52885
CVE-2024-52885 affects the Mobile Access Portal File Share component (Check Point Mobile Access). A directory traversal flaw allows an authenticated user (authorized to at least one File Share app) to enumerate file names in directories accessible to the nobody user on the Mobile Access gateway. ...