CVE Database · CVE-2024-24919
CVSS v3.1
8.6
EPSS
99.98%
Published
May 28, 2024
Modified
Oct 24, 2025
CISA Known Exploited Vulnerability
Added: 2024-05-30 · Due: 2024-06-20
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Public PoC / Exploit (10)
All weaponized →Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected to the internet and enabled with remote Access VPN or Mobile Access Software Blades. A Security fix that mitigates this vulnerability is available.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:NWeaknesses (CWE)
Affected Products (20)
References (4)