CVE-2024-24916 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6.5 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
checkpoint	CNA	6.5 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 5%

Vendor	Product	Version
checkpoint	smartconsole	r81.10:build400
checkpoint	smartconsole	r81.10:build402
checkpoint	smartconsole	r81.10:build404
checkpoint	smartconsole	r81.10:build406
checkpoint	smartconsole	r81.10:build407
checkpoint	smartconsole	r81.10:build409
checkpoint	smartconsole	r81.10:build410
checkpoint	smartconsole	r81.10:build412
checkpoint	smartconsole	r81.10:build413
checkpoint	smartconsole	r81.10:build414
checkpoint	smartconsole	r81.10:build416
checkpoint	smartconsole	r81.10:build417
checkpoint	smartconsole	r81.10:build418
checkpoint	smartconsole	r81.10:build420
checkpoint	smartconsole	r81.10:build423
checkpoint	smartconsole	r81.10:build424
checkpoint	smartconsole	r81.10:build425
checkpoint	smartconsole	r81.20:build640
checkpoint	smartconsole	r81.20:build641
checkpoint	smartconsole	r81.20:build645
checkpoint	smartconsole	r81.20:build646
checkpoint	smartconsole	r81.20:build649
checkpoint	smartconsole	r81.20:build651
checkpoint	smartconsole	r81.20:build653
checkpoint	smartconsole	r81.20:build654
checkpoint	smartconsole	r81.20:build655

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-427 - Uncontrolled Search Path Element
The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.

References

https://support.checkpoint.com/results/sk/sk183342