CVE-2025-2028

Medium CVSS: 6.5

Lack of TLS validation when downloading a CSV file including mapping from IPs to countries used ONLY for displaying country flags in logs

Vendor

Product

CWE

Yayın Tarihi

2025-08-06 15:15:31

Güncelleme

2025-08-27 14:13:07

Source Identifier

cve@checkpoint.com

KEV Date Added

CWE-295 Log Server MEDIUM Checkpoint 2025

https://support.checkpoint.com/results/sk/sk183349

High

CVE-2025-3831

Log files uploaded during troubleshooting by the Harmony SASE agent may have been accessible to unauthorized parties.

Medium

CVE-2024-52885

The Mobile Access Portal's File Share application is vulnerable to a directory traversal attack, allowing an authenticat…

Medium

CVE-2024-24915

Credentials are not cleared from memory after being used. A user with Administrator permissions can execute memory dump…

Medium

CVE-2024-24916

Untrusted DLLs in the installer's directory may be loaded and executed, leading to potentially arbitrary code execution…

Low

CVE-2024-52887

Authenticated end-user may set a specially crafted SNX bookmark that can make their browser run a script while accessing…

Medium

CVE-2024-52888

For an authenticated end-user the portal may run a script while attempting to display a directory or some file's propert…