CVE-2024-52887

Low CVSS: 3.5

Authenticated end-user may set a specially crafted SNX bookmark that can make their browser run a script while accessing their own bookmark list.

Vendor

Product

CWE

Yayın Tarihi

2025-04-27 08:15:14

Güncelleme

2025-09-02 18:37:08

Source Identifier

cve@checkpoint.com

KEV Date Added

CWE-79 Mobile Access LOW Checkpoint 2025

https://support.checkpoint.com/results/sk/sk183054

High

CVE-2025-3831

Log files uploaded during troubleshooting by the Harmony SASE agent may have been accessible to unauthorized parties.

Medium

CVE-2024-52885

The Mobile Access Portal's File Share application is vulnerable to a directory traversal attack, allowing an authenticat…

Medium

CVE-2025-2028

Lack of TLS validation when downloading a CSV file including mapping from IPs to countries used ONLY for displaying coun…

Medium

CVE-2024-24915

Credentials are not cleared from memory after being used. A user with Administrator permissions can execute memory dump…

Medium

CVE-2024-24916

Untrusted DLLs in the installer's directory may be loaded and executed, leading to potentially arbitrary code execution…

Medium

CVE-2024-52888

For an authenticated end-user the portal may run a script while attempting to display a directory or some file's propert…