← back
CVE-2024-24919

Information disclosure

CVSS 8.6 HIGHEPSS 100.0%● KEVCWE-200
In short

A vulnerability in Check Point Security Gateways allows attackers to read sensitive information if the gateway is exposed to the internet with remote access VPN or Mobile Access enabled. This can leak confidential data that should be protected.

Technical detail

Information disclosure vulnerability in Check Point Security Gateways (CWE-200) affecting systems with remote Access VPN or Mobile Access Software Blades exposed to the internet. An attacker with network access can retrieve sensitive information without authentication. Requires the vulnerable Blade to be enabled on an internet-facing gateway.

Summary generated and translated by AI from the official description.
Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected to the internet and enabled with remote Access VPN or Mobile Access Software Blades. A Security fix that mitigates this vulnerability is available.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
Affected products
checkpoint · Check Point Quantum Gateway, Spark Gateway and CloudGuard Network
public PoCs found58
githubgithub.com/seed1337/CVE-2024-24919-POC47githubgithub.com/ifconfig-me/CVE-2024-24919-Bulk-Scanner31githubgithub.com/RevoltSecurities/CVE-2024-2491925githubgithub.com/GoatSecurity/CVE-2024-2491920githubgithub.com/un9nplayer/CVE-2024-2491916githubgithub.com/LucasKatashi/CVE-2024-2491912githubgithub.com/0nin0hanz0/CVE-2024-24919-PoC11githubgithub.com/verylazytech/CVE-2024-249199githubgithub.com/c3rrberu5/CVE-2024-249197githubgithub.com/geniuszly/CVE-2024-249196githubgithub.com/emanueldosreis/CVE-2024-249195githubgithub.com/smackerdodi/CVE-2024-24919-nuclei-templater5githubgithub.com/GuayoyoCyber/CVE-2024-249194githubgithub.com/zam89/CVE-2024-249194githubgithub.com/bigb0x/CVE-2024-24919-Sniper3githubgithub.com/Bytenull00/CVE-2024-249193githubgithub.com/Rug4lo/CVE-2024-24919-Exploit3githubgithub.com/GlobalsecureAcademy/CVE-2024-249193githubgithub.com/NingXin2002/Check-Point_poc2githubgithub.com/r4p3c4/CVE-2024-24919-Exploit-PoC-Checkpoint-Firewall-VPN2githubgithub.com/Cappricio-Securities/CVE-2024-249192githubgithub.com/SalehLardhi/CVE-2024-249191githubgithub.com/starlox0/CVE-2024-24919-POC1githubgithub.com/r4p3c4/CVE-2024-24919-Checkpoint-Firewall-VPN-Check1githubgithub.com/0xans/CVE-2024-249191githubgithub.com/mr-kasim-mehar/CVE-2024-24919-Exploit1githubgithub.com/satriarizka/CVE-2024-249191githubgithub.com/birdlex/cve-2024-24919-checker1githubgithub.com/intel365/CVE-2024-249191githubgithub.com/hashdr1ft/SOC_2871githubgithub.com/funixone/CVE-2024-24919---Exploit-Script1githubgithub.com/nexblade12/CVE-2024-249191githubgithub.com/Praison001/CVE-2024-24919-Check-Point-Remote-Access-VPN1githubgithub.com/fernandobortotti/CVE-2024-249191githubgithub.com/0xYumeko/CVE-2024-249191githubgithub.com/MacUchegit/Detecting-and-Analyzing-CVE-2024-24919-Exploitation0githubgithub.com/hendprw/CVE-2024-249190githubgithub.com/am-eid/CVE-2024-249190githubgithub.com/P3wc0/CVE-2024-249190githubgithub.com/Vulnpire/CVE-2024-249190githubgithub.com/0xkalawy/CVE-2024-249190githubgithub.com/nicolvsrlr27/CVE-2024-249190githubgithub.com/YN1337/CVE-2024-249190githubgithub.com/J4F9S5D2Q7/CVE-2024-24919-CHECKPOINT0githubgithub.com/Expl0itD0g/CVE-2024-24919---Poc0githubgithub.com/Tim-Hoekstra/CVE-2024-249190githubgithub.com/nullcult/CVE-2024-24919-Exploit0githubgithub.com/satchhacker/cve-2024-249190githubgithub.com/H3KEY/CVE-2024-249190githubgithub.com/Jutrm/cve-2024-249190githubgithub.com/LuisMateo1/Arbitrary-File-Read-CVE-2024-249190githubgithub.com/AhmedMansour93/Event-ID-263-Rule-Name-SOC287---Arbitrary-File-Read-on-Checkpoint-Security-Gateway-CVE-2024-24919-0githubgithub.com/sar-3mar/CVE-2024-24919_POC0githubgithub.com/SpiX-7/CVE-2024-24919-POC0githubgithub.com/ejaboz/cve-2024-249190githubgithub.com/CyprianAtsyor/CVE-2024-24919-Incident-Report.md0githubgithub.com/CyberBibs/Event-ID-263-Arbitrary-File-Read-on-Checkpoint-Security-Gateway-CVE-2024-24919-0cve_referencewww.mnemonic.io/resources/blog/advisory-check-point-remote-access-vpn-vulnerability-cve-2024-24919/unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.checkpoint.com/results/sk/sk182336https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-24919https://www.mnemonic.io/resources/blog/advisory-check-point-remote-access-vpn-vulnerability-cve-2024-24919/