CVE-2024-24919
Check Point Quantum Security Gateways Information Disclosure Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
51Exploited in Wild
YesDecision
Descriptions
Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected to the internet and enabled with remote Access VPN or Mobile Access Software Blades. A Security fix that mitigates this vulnerability is available.
Potencialmente, permitir que un atacante lea cierta información en Check Point Security Gateways una vez conectado a Internet y habilitado con VPN de acceso remoto o software Blades de acceso móvil. Hay disponible una solución de seguridad que mitiga esta vulnerabilidad.
Check Point Security Gateway suffers from an information disclosure vulnerability. Versions affected include R77.20 (EOL), R77.30 (EOL), R80.10 (EOL), R80.20 (EOL), R80.20.x, R80.20SP (EOL), R80.30 (EOL), R80.30SP (EOL), R80.40 (EOL), R81, R81.10, R81.10.x, and R81.20.
Check Point Quantum Security Gateways contain an unspecified information disclosure vulnerability. The vulnerability potentially allows an attacker to access information on Gateways connected to the internet, with IPSec VPN, Remote Access VPN or Mobile Access enabled. This issue affects several product lines from Check Point, including CloudGuard Network, Quantum Scalable Chassis, Quantum Security Gateways, and Quantum Spark Appliances.
CVSS Scores
SSVC
- Decision:Act
Timeline
- 2024-02-01 CVE Reserved
- 2024-05-28 CVE Published
- 2024-05-30 Exploited in Wild
- 2024-05-30 First Exploit
- 2024-06-20 KEV Due Date
- 2024-08-01 CVE Updated
- 2024-11-08 EPSS Updated
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CAPEC
References (53)
URL | Tag | Source |
---|---|---|
- |
URL | Date | SRC |
---|---|---|
https://support.checkpoint.com/results/sk/sk182336 | 2024-05-31 |
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Checkpoint Search vendor "Checkpoint" | Quantum Security Gateway Firmware Search vendor "Checkpoint" for product "Quantum Security Gateway Firmware" | r80.40 Search vendor "Checkpoint" for product "Quantum Security Gateway Firmware" and version "r80.40" | - |
Affected
| in | Checkpoint Search vendor "Checkpoint" | Quantum Security Gateway Search vendor "Checkpoint" for product "Quantum Security Gateway" | - | - |
Safe
|
Checkpoint Search vendor "Checkpoint" | Quantum Security Gateway Firmware Search vendor "Checkpoint" for product "Quantum Security Gateway Firmware" | r81.20 Search vendor "Checkpoint" for product "Quantum Security Gateway Firmware" and version "r81.20" | - |
Affected
| in | Checkpoint Search vendor "Checkpoint" | Quantum Security Gateway Search vendor "Checkpoint" for product "Quantum Security Gateway" | - | - |
Safe
|
Checkpoint Search vendor "Checkpoint" | Quantum Security Gateway Firmware Search vendor "Checkpoint" for product "Quantum Security Gateway Firmware" | r81.10 Search vendor "Checkpoint" for product "Quantum Security Gateway Firmware" and version "r81.10" | - |
Affected
| in | Checkpoint Search vendor "Checkpoint" | Quantum Security Gateway Search vendor "Checkpoint" for product "Quantum Security Gateway" | - | - |
Safe
|
Checkpoint Search vendor "Checkpoint" | Quantum Security Gateway Firmware Search vendor "Checkpoint" for product "Quantum Security Gateway Firmware" | r81.0 Search vendor "Checkpoint" for product "Quantum Security Gateway Firmware" and version "r81.0" | - |
Affected
| in | Checkpoint Search vendor "Checkpoint" | Quantum Security Gateway Search vendor "Checkpoint" for product "Quantum Security Gateway" | - | - |
Safe
|
Checkpoint Search vendor "Checkpoint" | Quantum Spark Firmware Search vendor "Checkpoint" for product "Quantum Spark Firmware" | r81.10 Search vendor "Checkpoint" for product "Quantum Spark Firmware" and version "r81.10" | - |
Affected
| in | Checkpoint Search vendor "Checkpoint" | Quantum Spark Search vendor "Checkpoint" for product "Quantum Spark" | - | - |
Safe
|
Checkpoint Search vendor "Checkpoint" | Quantum Spark Firmware Search vendor "Checkpoint" for product "Quantum Spark Firmware" | r80.20 Search vendor "Checkpoint" for product "Quantum Spark Firmware" and version "r80.20" | - |
Affected
| in | Checkpoint Search vendor "Checkpoint" | Quantum Spark Search vendor "Checkpoint" for product "Quantum Spark" | - | - |
Safe
|
Checkpoint Search vendor "Checkpoint" | Cloudguard Network Security Search vendor "Checkpoint" for product "Cloudguard Network Security" | r80.40 Search vendor "Checkpoint" for product "Cloudguard Network Security" and version "r80.40" | - |
Affected
| ||||||
Checkpoint Search vendor "Checkpoint" | Cloudguard Network Security Search vendor "Checkpoint" for product "Cloudguard Network Security" | r81.0 Search vendor "Checkpoint" for product "Cloudguard Network Security" and version "r81.0" | - |
Affected
| ||||||
Checkpoint Search vendor "Checkpoint" | Cloudguard Network Security Search vendor "Checkpoint" for product "Cloudguard Network Security" | r81.10 Search vendor "Checkpoint" for product "Cloudguard Network Security" and version "r81.10" | - |
Affected
| ||||||
Checkpoint Search vendor "Checkpoint" | Cloudguard Network Security Search vendor "Checkpoint" for product "Cloudguard Network Security" | r81.20 Search vendor "Checkpoint" for product "Cloudguard Network Security" and version "r81.20" | - |
Affected
|