Vulnerabilities > CVE-2024-24919 - Unspecified vulnerability in Checkpoint products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected to the internet and enabled with remote Access VPN or Mobile Access Software Blades. A Security fix that mitigates this vulnerability is available.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 6 | |
| Hardware | 2 | |
| Application | 4 |
Related news
- Check Point releases emergency fix for VPN zero-day exploited in attacks (source)
- Check Point Warns of Zero-Day Attacks on its VPN Gateway Products (source)
- Check Point VPN zero-day exploited in attacks since April 30 (source)
- Check Point VPN zero-day exploited since beginning of April (CVE-2024-24919) (source)
- Week in review: Attackers trying to access Check Point VPNs, NIST CSF 2.0 security metrics evolution (source)