CVE-2024-24915

Medium CVSS: 6.1

Credentials are not cleared from memory after being used. A user with Administrator permissions can execute memory dump for SmartConsole process and fetch them.

Vendor

Checkpoint

Product

Smartconsole

CWE

CWE-316

Yayın Tarihi

2025-06-29 12:15:22

Güncelleme

2025-09-03 15:22:49

Source Identifier

cve@checkpoint.com

KEV Date Added

Kategoriler

CWE-316 Smartconsole MEDIUM Checkpoint 2025

Referanslar

https://support.checkpoint.com/results/sk/sk183545

Benzer Kayıtlar

High

CVE-2025-3831

Log files uploaded during troubleshooting by the Harmony SASE agent may have been accessible to unauthorized parties.

Medium

CVE-2024-52885

The Mobile Access Portal's File Share application is vulnerable to a directory traversal attack, allowing an authenticat…

Medium

CVE-2025-2028

Lack of TLS validation when downloading a CSV file including mapping from IPs to countries used ONLY for displaying coun…

Medium

CVE-2024-24916

Untrusted DLLs in the installer's directory may be loaded and executed, leading to potentially arbitrary code execution…

Low

CVE-2024-52887

Authenticated end-user may set a specially crafted SNX bookmark that can make their browser run a script while accessing…

Medium

CVE-2024-52888

For an authenticated end-user the portal may run a script while attempting to display a directory or some file's propert…