← volver
CVE-2024-24919

Information disclosure

CVSS 8.6 HIGHEPSS 100.0%● KEVCWE-200
En resumen

Una vulnerabilidad en Check Point Security Gateways permite que atacantes lean información sensible si la puerta de enlace está expuesta en internet con VPN de acceso remoto o Mobile Access habilitado. Esto puede filtrar datos confidenciales que deberían estar protegidos.

Detalle técnico

Vulnerabilidad de divulgación de información (CWE-200) en Check Point Security Gateways que afecta sistemas con remote Access VPN o Mobile Access Software Blades expuestos a internet. Un atacante con acceso de red puede recuperar información sensible sin autenticación. Requiere que la Blade vulnerable esté habilitada en una puerta de enlace expuesta a internet.

Resumen generado y traducido por IA a partir de la descripción oficial.
Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected to the internet and enabled with remote Access VPN or Mobile Access Software Blades. A Security fix that mitigates this vulnerability is available.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
Productos afectados
checkpoint · Check Point Quantum Gateway, Spark Gateway and CloudGuard Network
PoCs públicas encontradas58
githubgithub.com/seed1337/CVE-2024-24919-POC47githubgithub.com/ifconfig-me/CVE-2024-24919-Bulk-Scanner31githubgithub.com/RevoltSecurities/CVE-2024-2491925githubgithub.com/GoatSecurity/CVE-2024-2491920githubgithub.com/un9nplayer/CVE-2024-2491916githubgithub.com/LucasKatashi/CVE-2024-2491912githubgithub.com/0nin0hanz0/CVE-2024-24919-PoC11githubgithub.com/verylazytech/CVE-2024-249199githubgithub.com/c3rrberu5/CVE-2024-249197githubgithub.com/geniuszly/CVE-2024-249196githubgithub.com/emanueldosreis/CVE-2024-249195githubgithub.com/smackerdodi/CVE-2024-24919-nuclei-templater5githubgithub.com/GuayoyoCyber/CVE-2024-249194githubgithub.com/zam89/CVE-2024-249194githubgithub.com/bigb0x/CVE-2024-24919-Sniper3githubgithub.com/Bytenull00/CVE-2024-249193githubgithub.com/Rug4lo/CVE-2024-24919-Exploit3githubgithub.com/GlobalsecureAcademy/CVE-2024-249193githubgithub.com/NingXin2002/Check-Point_poc2githubgithub.com/r4p3c4/CVE-2024-24919-Exploit-PoC-Checkpoint-Firewall-VPN2githubgithub.com/Cappricio-Securities/CVE-2024-249192githubgithub.com/SalehLardhi/CVE-2024-249191githubgithub.com/starlox0/CVE-2024-24919-POC1githubgithub.com/r4p3c4/CVE-2024-24919-Checkpoint-Firewall-VPN-Check1githubgithub.com/0xans/CVE-2024-249191githubgithub.com/mr-kasim-mehar/CVE-2024-24919-Exploit1githubgithub.com/satriarizka/CVE-2024-249191githubgithub.com/birdlex/cve-2024-24919-checker1githubgithub.com/intel365/CVE-2024-249191githubgithub.com/hashdr1ft/SOC_2871githubgithub.com/funixone/CVE-2024-24919---Exploit-Script1githubgithub.com/nexblade12/CVE-2024-249191githubgithub.com/Praison001/CVE-2024-24919-Check-Point-Remote-Access-VPN1githubgithub.com/fernandobortotti/CVE-2024-249191githubgithub.com/0xYumeko/CVE-2024-249191githubgithub.com/MacUchegit/Detecting-and-Analyzing-CVE-2024-24919-Exploitation0githubgithub.com/hendprw/CVE-2024-249190githubgithub.com/am-eid/CVE-2024-249190githubgithub.com/P3wc0/CVE-2024-249190githubgithub.com/Vulnpire/CVE-2024-249190githubgithub.com/0xkalawy/CVE-2024-249190githubgithub.com/nicolvsrlr27/CVE-2024-249190githubgithub.com/YN1337/CVE-2024-249190githubgithub.com/J4F9S5D2Q7/CVE-2024-24919-CHECKPOINT0githubgithub.com/Expl0itD0g/CVE-2024-24919---Poc0githubgithub.com/Tim-Hoekstra/CVE-2024-249190githubgithub.com/nullcult/CVE-2024-24919-Exploit0githubgithub.com/satchhacker/cve-2024-249190githubgithub.com/H3KEY/CVE-2024-249190githubgithub.com/Jutrm/cve-2024-249190githubgithub.com/LuisMateo1/Arbitrary-File-Read-CVE-2024-249190githubgithub.com/AhmedMansour93/Event-ID-263-Rule-Name-SOC287---Arbitrary-File-Read-on-Checkpoint-Security-Gateway-CVE-2024-24919-0githubgithub.com/sar-3mar/CVE-2024-24919_POC0githubgithub.com/SpiX-7/CVE-2024-24919-POC0githubgithub.com/ejaboz/cve-2024-249190githubgithub.com/CyprianAtsyor/CVE-2024-24919-Incident-Report.md0githubgithub.com/CyberBibs/Event-ID-263-Arbitrary-File-Read-on-Checkpoint-Security-Gateway-CVE-2024-24919-0cve_referencewww.mnemonic.io/resources/blog/advisory-check-point-remote-access-vpn-vulnerability-cve-2024-24919/no verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://support.checkpoint.com/results/sk/sk182336https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-24919https://www.mnemonic.io/resources/blog/advisory-check-point-remote-access-vpn-vulnerability-cve-2024-24919/