Vulnerability identifier: #VU89894

Vulnerability risk: High

CVSSv3.1: 8.2 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N/E:H/RL:O/RC:C]

CVE-ID: CVE-2024-24919

CWE-ID: CWE-22

Exploitation vector: Network

Exploits in database: 14

• August 9, 2024
  • CVE-2024-24919 [Github]
• August 2, 2024
  • CVE-2024-24919 [Github]
• July 26, 2024
  • CVE-2024-24919 [Github]
• June 14, 2024
  • CVE-2024-24919 [Github]
• June 7, 2024
  • CVE-2024-24919-PoC [Github]
  • CVE-2024-24919 (Exploit tool to validate CVE-2024-24919 vulnerability on Checkpoint Firewall VPNs) [Github]
  • CVE-2024-24919-Exploit ( CVE-2024-24919 Exploit and PoC - Critical LFI for Remote Access VPN or Mobile Access.) [Github]
  • CVE-2024-24919 (This repository contains a proof-of-concept (PoC) exploit for CVE-2024-24919, a critical vulnerability discovered in Check Point SVN. The vulnerability allows for reading system files. CVE ID: CVE-2024-24919) [Github]
• May 31, 2024
  • CVE-2024-24919 [Github]
  • CVE-2024-24919 [Github]
  • CVE-2024-24919-Check-Point-Remote-Access-VPN [Github]
  • CVE-2024-24919 (Simple POC Python script that check & leverage Check Point CVE-2024-24919 vulnerability (Wrong Check Point)) [Github]
  • CVE-2024-24919 [Github]
  • CVE-2024-24919 [Github]

Impact: Information disclosure

Vulnerable software:
Gaia
Operating systems & Components / Operating system

Vendor: Check Point Software Technologies