cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-24914,https://securityvulnerability.io/vulnerability/CVE-2024-24914,Alert: Injection Vulnerability Affecting Gaia Users through Special HTTP Requests,"This vulnerability allows authenticated users of the Check Point Gaia software to inject malicious code or commands into the system through the manipulation of global variables via specially crafted HTTP requests. Such exploitation could lead to unauthorized actions within the application, making it critical for users to apply the available security fix to safeguard their systems. For further details on mitigations, refer to the official support documentation.",Checkpoint,"Clusterxl, Multi-domain Security Management, Quantum Appliances, Quantum Maestro, Quantum Scalable Chassis, Quantum Security Gateways, Quantum Security Management",8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-11-07T11:25:53.238Z,0
CVE-2024-24919,https://securityvulnerability.io/vulnerability/CVE-2024-24919,Check Point Security Gateways Vulnerability Allows Remote Access Attacks,"A vulnerability exists within Check Point Security Gateways that could allow attackers to access sensitive information once the device is connected to the internet, specifically when the remote Access VPN or Mobile Access Software Blades are enabled. This could pose significant risks to network integrity and confidentiality, particularly if exploited by malicious actors. Check Point has released a security fix to address this issue, urging users to apply the update to safeguard their systems.",Checkpoint,"Check Point Quantum Gateway, Spark Gateway And Cloudguard Network",8.6,HIGH,0.9581800103187561,true,true,true,true,true,true,true,2024-05-28T18:22:19.401Z,110353
CVE-2024-24912,https://securityvulnerability.io/vulnerability/CVE-2024-24912,Local Privilege Escalation Vulnerability Affects Harmony Endpoint Security Client for Windows,"A local privilege escalation vulnerability has been identified in Harmony Endpoint Security Client for Windows versions E88.10 and below. To exploit this vulnerability, an attacker must first obtain the ability to execute local privileged code on the target system.",Checkpoint,Harmony Endpoint Security Client For Windows,,,0.0004299999854993075,false,false,false,false,,false,false,2024-05-01T13:22:48.486Z,0
CVE-2023-28134,https://securityvulnerability.io/vulnerability/CVE-2023-28134,Local Privliege Escalation in Check Point Endpoint Security Remediation Service,"A local attacker can exploit this vulnerability to escalate privileges on affected installations of Check Point Harmony Endpoint and ZoneAlarm Extreme Security. The attacker must first gain the ability to execute low-privileged code on the target system, making it crucial to mitigate such weak points in system security.",Checkpoint,Harmony Endpoint.,7.8,HIGH,0.00044999999227002263,false,false,false,false,,false,false,2023-11-12T23:15:00.000Z,0
CVE-2023-28130,https://securityvulnerability.io/vulnerability/CVE-2023-28130,Privilege Escalation Vulnerability in Check Point Gaia Portal,"A local user can exploit a vulnerability in the Check Point Gaia Portal's hostnames page, potentially leading to unauthorized privilege escalation. This weakness enables attackers to execute commands at elevated levels, compromising system integrity and security. Administrators are advised to review this issue promptly and apply necessary patches to mitigate risks associated with this flaw.",Checkpoint,"Quantum Appliances, Quantum Security Gateways",7.2,HIGH,0.0007900000200606883,false,false,false,false,,false,false,2023-07-26T11:15:00.000Z,0
CVE-2023-28133,https://securityvulnerability.io/vulnerability/CVE-2023-28133,Local Privilege Escalation in Check Point Endpoint Security Client,"A local privilege escalation vulnerability exists in the Check Point Endpoint Security Client, specifically in version E87.30. This issue arises due to a crafted OpenSSL configuration file that can exploit the system, potentially allowing unauthorized users to gain elevated privileges. It is crucial for users of this product to review their configurations and apply necessary mitigations to safeguard their systems from potential exploitation.",Checkpoint,Harmony Endpoint.,7.8,HIGH,0.000590000010561198,false,false,false,false,,false,false,2023-07-23T10:15:00.000Z,0
CVE-2022-23746,https://securityvulnerability.io/vulnerability/CVE-2022-23746,,"The IPsec VPN blade has a dedicated portal for downloading and connecting through SSL Network Extender (SNX). If the portal is configured for username/password authentication, it is vulnerable to a brute-force attack on usernames and passwords.",Checkpoint,"Gateway & Management, Ipsec Vpn Blade Snx Portal.",7.5,HIGH,0.0019600000232458115,false,false,false,false,,false,false,2022-11-30T00:00:00.000Z,0
CVE-2022-41604,https://securityvulnerability.io/vulnerability/CVE-2022-41604,,"Check Point ZoneAlarm Extreme Security before 15.8.211.19229 allows local users to escalate privileges. This occurs because of weak permissions for the %PROGRAMDATA%\CheckPoint\ZoneAlarm\Data\Updates directory, and a self-protection driver bypass that allows creation of a junction directory. This can be leveraged to perform an arbitrary file move as NT AUTHORITY\SYSTEM.",Checkpoint,Zonealarm,8.8,HIGH,0.0004199999966658652,false,false,false,false,,false,false,2022-09-27T02:17:14.000Z,0
CVE-2022-23745,https://securityvulnerability.io/vulnerability/CVE-2022-23745,,A potential memory corruption issue was found in Capsule Workspace Android app (running on GrapheneOS). This could result in application crashing but could not be used to gather any sensitive information.,Checkpoint,Checkpoint Harmony Capsule Workspace,7.5,HIGH,0.0008900000248104334,false,false,false,false,,false,false,2022-07-18T16:09:20.000Z,0
CVE-2022-23744,https://securityvulnerability.io/vulnerability/CVE-2022-23744,,Check Point Endpoint before version E86.50 failed to protect against specific registry change which allowed to disable endpoint protection by a local administrator.,Checkpoint,Enterprise Endpoint Security Windows Clients.,2.3,LOW,0.0004400000034365803,false,false,false,false,,false,false,2022-07-07T15:51:44.000Z,0
CVE-2022-23742,https://securityvulnerability.io/vulnerability/CVE-2022-23742,,"Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports from a directory with low privileges. An attacker can replace those files with malicious or linked content, such as exploiting CVE-2020-0896 on unpatched systems or using symbolic links.",Checkpoint,Check Point Endpoint Security Client For Windows,7.8,HIGH,0.0004400000034365803,false,false,false,false,,false,false,2022-05-12T19:23:18.000Z,0
CVE-2021-30361,https://securityvulnerability.io/vulnerability/CVE-2021-30361,,The Check Point Gaia Portal's GUI Clients allowed authenticated administrators with permission for the GUI Clients settings to inject a command that would run on the Gaia OS.,Checkpoint,Check Point Gaia Portal,6.7,MEDIUM,0.0004400000034365803,false,false,false,false,,false,false,2022-05-11T16:42:52.000Z,0
CVE-2022-23743,https://securityvulnerability.io/vulnerability/CVE-2022-23743,,"Check Point ZoneAlarm before version 15.8.200.19118 allows a local actor to escalate privileges during the upgrade process. In addition, weak permissions in the ProgramData\CheckPoint\ZoneAlarm\Data\Updates directory allow a local attacker the ability to execute an arbitrary file write, leading to execution of code as local system, in ZoneAlarm versions before v15.8.211.192119",Checkpoint,Zonealarm.,7.8,HIGH,0.0004199999966658652,false,false,false,false,,false,false,2022-05-11T00:00:00.000Z,0
CVE-2021-30360,https://securityvulnerability.io/vulnerability/CVE-2021-30360,,"Users have access to the directory where the installation repair occurs. Since the MS Installer allows regular users to run the repair, an attacker can initiate the installation repair and place a specially crafted EXE in the repair folder which runs with the Check Point Remote Access Client privileges.",Checkpoint,Check Point Remote Access Client,7.8,HIGH,0.0004799999878741801,false,false,false,false,,false,false,2022-01-10T14:10:00.000Z,0
CVE-2021-30359,https://securityvulnerability.io/vulnerability/CVE-2021-30359,,"The Harmony Browse and the SandBlast Agent for Browsers installers must have admin privileges to execute some steps during the installation. Because the MS Installer allows regular users to repair their installation, an attacker running an installer before 90.08.7405 can start the installation repair and place a specially crafted binary in the repair folder, which runs with the admin privileges.",Checkpoint,Check Point Harmony Browse And Sandblast Agent For Browsers,7.8,HIGH,0.0004400000034365803,false,false,false,false,,false,false,2021-10-22T13:32:54.000Z,0
CVE-2021-30358,https://securityvulnerability.io/vulnerability/CVE-2021-30358,,Mobile Access Portal Native Applications who's path is defined by the administrator with environment variables may run applications from other locations by the Mobile Access Portal Agent.,Checkpoint,Check Point Mobile Access Portal Agent,7.2,HIGH,0.001180000021122396,false,false,false,false,,false,false,2021-10-19T13:32:46.000Z,0
CVE-2021-30357,https://securityvulnerability.io/vulnerability/CVE-2021-30357,,"SSL Network Extender Client for Linux before build 800008302 reveals part of the contents of the configuration file supplied, which allows partially disclosing files to which the user did not have access.",Checkpoint,Ssl Network Extender Client For Linux,5.3,MEDIUM,0.0006500000017695129,false,false,false,true,true,false,false,2021-06-08T13:31:53.000Z,0
CVE-2021-30356,https://securityvulnerability.io/vulnerability/CVE-2021-30356,,"A denial of service vulnerability was reported in Check Point Identity Agent before R81.018.0000, which could allow low privileged users to overwrite protected system files.",Checkpoint,Check Point Identity Agent,8.1,HIGH,0.0008099999977275729,false,false,false,false,,false,false,2021-04-22T17:37:06.000Z,0
CVE-2020-6024,https://securityvulnerability.io/vulnerability/CVE-2020-6024,,"Check Point SmartConsole before R80.10 Build 185, R80.20 Build 119, R80.30 before Build 94, R80.40 before Build 415, and R81 before Build 548 were vulnerable to a possible local privilege escalation due to running executables from a directory with write access to all authenticated users.",Checkpoint,Check Point Smartconsole,7.8,HIGH,0.0004199999966658652,false,false,false,false,,false,false,2021-01-20T18:17:53.000Z,0
CVE-2020-6021,https://securityvulnerability.io/vulnerability/CVE-2020-6021,,"Check Point Endpoint Security Client for Windows before version E84.20 allows write access to the directory from which the installation repair takes place. Since the MS Installer allows regular users to run the repair, an attacker can initiate the installation repair and place a specially crafted DLL in the repair folder which will run with the Endpoint client’s privileges.",Checkpoint,Check Point Endpoint Security Client For Windows,7.8,HIGH,0.0004400000034365803,false,false,false,false,,false,false,2020-12-03T13:31:22.000Z,0
CVE-2020-6015,https://securityvulnerability.io/vulnerability/CVE-2020-6015,,Check Point Endpoint Security for Windows before E84.10 can reach denial of service during clean install of the client which will prevent the storage of service log files in non-standard locations.,Checkpoint,Check Point Endpoint Security For Windows,5.5,MEDIUM,0.0004400000034365803,false,false,false,false,,false,false,2020-11-05T19:37:06.000Z,0
CVE-2020-6014,https://securityvulnerability.io/vulnerability/CVE-2020-6014,,"Check Point Endpoint Security Client for Windows, with Anti-Bot or Threat Emulation blades installed, before version E83.20, tries to load a non-existent DLL during a query for the Domain Name. An attacker with administrator privileges can leverage this to gain code execution within a Check Point Software Technologies signed binary, where under certain circumstances may cause the client to terminate.",Checkpoint,Check Point Endpoint Security Client For Windows,6.5,MEDIUM,0.0004400000034365803,false,false,false,false,,false,false,2020-10-30T14:22:05.000Z,0
CVE-2020-6023,https://securityvulnerability.io/vulnerability/CVE-2020-6023,,Check Point ZoneAlarm before version 15.8.139.18543 allows a local actor to escalate privileges while restoring files in Anti-Ransomware.,Checkpoint,Check Point Zonealarm,7.8,HIGH,0.0004400000034365803,false,false,false,false,,false,false,2020-10-27T13:52:57.000Z,0
CVE-2020-6022,https://securityvulnerability.io/vulnerability/CVE-2020-6022,,Check Point ZoneAlarm before version 15.8.139.18543 allows a local actor to delete arbitrary files while restoring files in Anti-Ransomware.,Checkpoint,Check Point Zonealarm,5.5,MEDIUM,0.0004400000034365803,false,false,false,false,,false,false,2020-10-27T13:50:50.000Z,0
CVE-2020-6020,https://securityvulnerability.io/vulnerability/CVE-2020-6020,,"Check Point Security Management's Internal CA web management before Jumbo HFAs R80.10 Take 278, R80.20 Take 160, R80.30 Take 210, and R80.40 Take 38, can be manipulated to run commands as a high privileged user or crash, due to weak input validation on inputs by a trusted management administrator.",Checkpoint,Ica Management Portal,6.4,MEDIUM,0.0004400000034365803,false,false,false,false,,false,false,2020-09-24T13:25:32.000Z,0