Search

Find a vulnerability

Search criteria

    10 vulnerabilities found for gaia_os by checkpoint

    CVE-2026-50751 (GCVE-0-2026-50751)

    Vulnerability from nvd – Published: 2026-06-08 11:07 – Updated: 2026-06-10 13:37
    VLAI CISA CIRCL KEVIntel
    Title
    User Authentication Bypass in VPN Remote Access and Mobile Access
    Summary
    A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.
    SSVC
    Exploitation: active Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-287 - Improper Authentication.
    Assigner
    Impacted products
    Vendor Product Version
    checkpoint Quantum Security Gateway Affected: R82.10 with Jumbo Hotfix Take 19 or below
    Affected: R82 with Jumbo Hotfix Take 103 or below
    Affected: R81.20 with Jumbo Hotfix Take 141 or below
    Affected: R81.10, R81, and R80.40
    Create a notification for this product.
    checkpoint Spark Firewalls Affected: R80.20.X, R81.10.X, and R82.00.X
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "NONE",
                  "baseScore": 9.3,
                  "baseSeverity": "CRITICAL",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "LOW",
                  "privilegesRequired": "NONE",
                  "scope": "CHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-50751",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-09T03:55:36.834802Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2026-06-08",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-50751"
                  },
                  "type": "kev"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-10T13:37:27.725Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "vendor-advisory"
                ],
                "url": "https://blog.checkpoint.com/security/check-point-releases-important-hotfix-for-vulnerabilities-in-deprecated-ikev1-vpn-protocol/"
              },
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-50751"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Quantum Security Gateway",
              "vendor": "checkpoint",
              "versions": [
                {
                  "status": "affected",
                  "version": "R82.10 with Jumbo Hotfix Take 19 or below"
                },
                {
                  "status": "affected",
                  "version": "R82 with Jumbo Hotfix Take 103 or below"
                },
                {
                  "status": "affected",
                  "version": "R81.20 with Jumbo Hotfix Take 141 or below"
                },
                {
                  "status": "affected",
                  "version": "R81.10, R81, and R80.40"
                }
              ]
            },
            {
              "product": "Spark Firewalls",
              "vendor": "checkpoint",
              "versions": [
                {
                  "status": "affected",
                  "version": "R80.20.X, R81.10.X, and R82.00.X"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password."
            }
          ],
          "metrics": [
            {
              "format": "CVSS",
              "other": {
                "content": {
                  "attackComplexity": "LOW",
                  "attackRequirements": "NONE",
                  "attackVector": "NETWORK",
                  "baseScore": 9.3,
                  "baseSeverity": "CRITICAL",
                  "privilegesRequired": "NONE",
                  "subAvailabilityImpact": "NONE",
                  "subConfidentialityImpact": "NONE",
                  "subIntegrityImpact": "NONE",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N",
                  "version": "4.0",
                  "vulnAvailabilityImpact": "LOW",
                  "vulnConfidentialityImpact": "HIGH",
                  "vulnIntegrityImpact": "HIGH"
                },
                "type": "CVSSv4.0"
              },
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-287",
                  "description": "CWE-287: Improper Authentication.",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-08T11:07:15.746Z",
            "orgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45",
            "shortName": "checkpoint"
          },
          "references": [
            {
              "url": "https://support.checkpoint.com/results/sk/sk185033"
            }
          ],
          "title": "User Authentication Bypass in VPN Remote Access and Mobile Access"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45",
        "assignerShortName": "checkpoint",
        "cveId": "CVE-2026-50751",
        "datePublished": "2026-06-08T11:07:15.746Z",
        "dateReserved": "2026-06-07T09:42:08.251Z",
        "dateUpdated": "2026-06-10T13:37:27.725Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-24911 (GCVE-0-2024-24911)

    Vulnerability from nvd – Published: 2025-02-06 13:46 – Updated: 2025-02-06 14:11
    VLAI
    Title
    Out of Bounds read in the CPCA process on Check Point Management Server
    Summary
    In rare scenarios, the cpca process on the Security Management Server / Domain Management Server may exit unexpectedly, creating a core dump file. When the cpca process is down, VPN and SIC connectivity issues may occur if the CRL is not present in the Security Gateway's CRL cache.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    checkpoint Multi-Domain Security Management, Quantum Security Management Affected: Quantum Security Management R81 (EOS), R81.10, R81.20
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-24911",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-06T14:11:40.331277Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-06T14:11:48.901Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Multi-Domain Security Management, Quantum Security Management",
              "vendor": "checkpoint",
              "versions": [
                {
                  "status": "affected",
                  "version": "Quantum Security Management R81 (EOS), R81.10, R81.20"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In rare scenarios, the cpca process on the Security Management Server / Domain Management Server may exit unexpectedly, creating a core dump file. When the cpca process is down, VPN and SIC connectivity issues may occur if the CRL is not present in the Security Gateway\u0027s CRL cache."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-125",
                  "description": "CWE-125: Out-of-bounds Read",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-02-06T13:46:11.824Z",
            "orgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45",
            "shortName": "checkpoint"
          },
          "references": [
            {
              "url": "https://support.checkpoint.com/results/sk/sk183101"
            }
          ],
          "title": "Out of Bounds read in the CPCA process on Check Point Management Server"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45",
        "assignerShortName": "checkpoint",
        "cveId": "CVE-2024-24911",
        "datePublished": "2025-02-06T13:46:11.824Z",
        "dateReserved": "2024-02-01T15:19:26.278Z",
        "dateUpdated": "2025-02-06T14:11:48.901Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-24914 (GCVE-0-2024-24914)

    Vulnerability from nvd – Published: 2024-11-07 11:25 – Updated: 2024-11-07 17:33
    VLAI
    Summary
    Authenticated Gaia users can inject code or commands by global variables through special HTTP requests. A Security fix that mitigates this vulnerability is available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-914 - Improper Control of Dynamically-Identified Variables
    Assigner
    References
    Impacted products
    Vendor Product Version
    checkpoint ClusterXL, Multi-Domain Security Management, Quantum Appliances, Quantum Maestro, Quantum Scalable Chassis, Quantum Security Gateways, Quantum Security Management Affected: Check Point Quantum Gateways versions R81, R81.10, R81.20
    Create a notification for this product.
    checkpoint clusterxl Affected: r81
    Affected: r81.10
    Affected: r81.20
        cpe:2.3:a:checkpoint:clusterxl:*:*:*:*:*:*:*:*
    Create a notification for this product.
    checkpoint multi-domain_management Affected: r81
    Affected: r81.10
    Affected: r81.20
        cpe:2.3:a:checkpoint:multi-domain_management:*:*:*:*:*:*:*:*
    Create a notification for this product.
    checkpoint quantum_appliances Affected: r81
    Affected: r81.10
    Affected: r81.20
        cpe:2.3:a:checkpoint:quantum_appliances:*:*:*:*:*:*:*:*
    Create a notification for this product.
    checkpoint quantum_maestro Affected: r81
    Affected: r81.10
    Affected: r81.20
        cpe:2.3:a:checkpoint:quantum_maestro:*:*:*:*:*:*:*:*
    Create a notification for this product.
    checkpoint quantum_scalable_chassis Affected: r81
    Affected: r81.10
    Affected: r81.20
        cpe:2.3:a:checkpoint:quantum_scalable_chassis:*:*:*:*:*:*:*:*
    Create a notification for this product.
    checkpoint quantum_security_gateway Affected: r81
    Affected: r81.10
    Affected: r81.20
        cpe:2.3:a:checkpoint:quantum_security_gateway:*:*:*:*:*:*:*:*
    Create a notification for this product.
    checkpoint quantum_security_management Affected: r81
    Affected: r81.10
    Affected: r81.20
        cpe:2.3:a:checkpoint:quantum_security_management:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:checkpoint:clusterxl:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "clusterxl",
                "vendor": "checkpoint",
                "versions": [
                  {
                    "status": "affected",
                    "version": "r81"
                  },
                  {
                    "status": "affected",
                    "version": "r81.10"
                  },
                  {
                    "status": "affected",
                    "version": "r81.20"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:checkpoint:multi-domain_management:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "multi-domain_management",
                "vendor": "checkpoint",
                "versions": [
                  {
                    "status": "affected",
                    "version": "r81"
                  },
                  {
                    "status": "affected",
                    "version": "r81.10"
                  },
                  {
                    "status": "affected",
                    "version": "r81.20"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:checkpoint:quantum_appliances:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "quantum_appliances",
                "vendor": "checkpoint",
                "versions": [
                  {
                    "status": "affected",
                    "version": "r81"
                  },
                  {
                    "status": "affected",
                    "version": "r81.10"
                  },
                  {
                    "status": "affected",
                    "version": "r81.20"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:checkpoint:quantum_maestro:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "quantum_maestro",
                "vendor": "checkpoint",
                "versions": [
                  {
                    "status": "affected",
                    "version": "r81"
                  },
                  {
                    "status": "affected",
                    "version": "r81.10"
                  },
                  {
                    "status": "affected",
                    "version": "r81.20"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:checkpoint:quantum_scalable_chassis:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "quantum_scalable_chassis",
                "vendor": "checkpoint",
                "versions": [
                  {
                    "status": "affected",
                    "version": "r81"
                  },
                  {
                    "status": "affected",
                    "version": "r81.10"
                  },
                  {
                    "status": "affected",
                    "version": "r81.20"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:checkpoint:quantum_security_gateway:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "quantum_security_gateway",
                "vendor": "checkpoint",
                "versions": [
                  {
                    "status": "affected",
                    "version": "r81"
                  },
                  {
                    "status": "affected",
                    "version": "r81.10"
                  },
                  {
                    "status": "affected",
                    "version": "r81.20"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:checkpoint:quantum_security_management:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "quantum_security_management",
                "vendor": "checkpoint",
                "versions": [
                  {
                    "status": "affected",
                    "version": "r81"
                  },
                  {
                    "status": "affected",
                    "version": "r81.10"
                  },
                  {
                    "status": "affected",
                    "version": "r81.20"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-24914",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-07T16:56:57.795526Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-07T17:33:31.286Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "ClusterXL, Multi-Domain Security Management, Quantum Appliances, Quantum Maestro, Quantum Scalable Chassis, Quantum Security Gateways, Quantum Security Management",
              "vendor": "checkpoint",
              "versions": [
                {
                  "status": "affected",
                  "version": "Check Point Quantum Gateways versions R81, R81.10, R81.20"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Authenticated Gaia users can inject code or commands by global variables through special HTTP requests. A Security fix that mitigates this vulnerability is available."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-914",
                  "description": "CWE-914: Improper Control of Dynamically-Identified Variables",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-07T11:25:53.238Z",
            "orgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45",
            "shortName": "checkpoint"
          },
          "references": [
            {
              "url": "https://support.checkpoint.com/results/sk/sk182743"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45",
        "assignerShortName": "checkpoint",
        "cveId": "CVE-2024-24914",
        "datePublished": "2024-11-07T11:25:53.238Z",
        "dateReserved": "2024-02-01T15:19:26.278Z",
        "dateUpdated": "2024-11-07T17:33:31.286Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-30361 (GCVE-0-2021-30361)

    Vulnerability from nvd – Published: 2022-05-11 16:42 – Updated: 2024-08-03 22:32
    VLAI
    Summary
    The Check Point Gaia Portal's GUI Clients allowed authenticated administrators with permission for the GUI Clients settings to inject a command that would run on the Gaia OS.
    Severity
    No CVSS data available.
    CWE
    • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Check Point Gaia Portal Affected: before Jumbo HFAs released 13-Apr-2022
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T22:32:41.127Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://supportcontent.checkpoint.com/solutions?id=sk179128"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Check Point Gaia Portal",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "before Jumbo HFAs released 13-Apr-2022"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The Check Point Gaia Portal\u0027s GUI Clients allowed authenticated administrators with permission for the GUI Clients settings to inject a command that would run on the Gaia OS."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-05-11T16:42:52.000Z",
            "orgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45",
            "shortName": "checkpoint"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://supportcontent.checkpoint.com/solutions?id=sk179128"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@checkpoint.com",
              "ID": "CVE-2021-30361",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Check Point Gaia Portal",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before Jumbo HFAs released 13-Apr-2022"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The Check Point Gaia Portal\u0027s GUI Clients allowed authenticated administrators with permission for the GUI Clients settings to inject a command that would run on the Gaia OS."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-78: Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://supportcontent.checkpoint.com/solutions?id=sk179128",
                  "refsource": "MISC",
                  "url": "https://supportcontent.checkpoint.com/solutions?id=sk179128"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45",
        "assignerShortName": "checkpoint",
        "cveId": "CVE-2021-30361",
        "datePublished": "2022-05-11T16:42:52.000Z",
        "dateReserved": "2021-04-07T00:00:00.000Z",
        "dateUpdated": "2024-08-03T22:32:41.127Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2013-7311 (GCVE-0-2013-7311)

    Vulnerability from nvd – Published: 2014-01-23 17:00 – Updated: 2024-09-16 23:32
    VLAI
    Summary
    The OSPF implementation in Check Point Gaia OS R75.X and R76 and IPSO OS 6.2 R75.X and R76 does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.kb.cert.org/vuls/id/BLUU-985QRC x_refsource_CONFIRM
    https://supportcenter.checkpoint.com/supportcente… x_refsource_CONFIRM
    http://www.kb.cert.org/vuls/id/229804 third-party-advisoryx_refsource_CERT-VN
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T18:01:20.568Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/BLUU-985QRC"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=\u0026solutionid=sk94490"
              },
              {
                "name": "VU#229804",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/229804"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The OSPF implementation in Check Point Gaia OS R75.X and R76 and IPSO OS 6.2 R75.X and R76 does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2014-01-23T17:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.kb.cert.org/vuls/id/BLUU-985QRC"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=\u0026solutionid=sk94490"
            },
            {
              "name": "VU#229804",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/229804"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2013-7311",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The OSPF implementation in Check Point Gaia OS R75.X and R76 and IPSO OS 6.2 R75.X and R76 does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://www.kb.cert.org/vuls/id/BLUU-985QRC",
                  "refsource": "CONFIRM",
                  "url": "http://www.kb.cert.org/vuls/id/BLUU-985QRC"
                },
                {
                  "name": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=\u0026solutionid=sk94490",
                  "refsource": "CONFIRM",
                  "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=\u0026solutionid=sk94490"
                },
                {
                  "name": "VU#229804",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/229804"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2013-7311",
        "datePublished": "2014-01-23T17:00:00.000Z",
        "dateReserved": "2014-01-23T00:00:00.000Z",
        "dateUpdated": "2024-09-16T23:32:05.658Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2026-50751 (GCVE-0-2026-50751)

    Vulnerability from cvelistv5 – Published: 2026-06-08 11:07 – Updated: 2026-06-10 13:37
    VLAI CISA CIRCL KEVIntel
    Title
    User Authentication Bypass in VPN Remote Access and Mobile Access
    Summary
    A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.
    SSVC
    Exploitation: active Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-287 - Improper Authentication.
    Assigner
    Impacted products
    Vendor Product Version
    checkpoint Quantum Security Gateway Affected: R82.10 with Jumbo Hotfix Take 19 or below
    Affected: R82 with Jumbo Hotfix Take 103 or below
    Affected: R81.20 with Jumbo Hotfix Take 141 or below
    Affected: R81.10, R81, and R80.40
    Create a notification for this product.
    checkpoint Spark Firewalls Affected: R80.20.X, R81.10.X, and R82.00.X
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "NONE",
                  "baseScore": 9.3,
                  "baseSeverity": "CRITICAL",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "LOW",
                  "privilegesRequired": "NONE",
                  "scope": "CHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-50751",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-09T03:55:36.834802Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2026-06-08",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-50751"
                  },
                  "type": "kev"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-10T13:37:27.725Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "vendor-advisory"
                ],
                "url": "https://blog.checkpoint.com/security/check-point-releases-important-hotfix-for-vulnerabilities-in-deprecated-ikev1-vpn-protocol/"
              },
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-50751"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Quantum Security Gateway",
              "vendor": "checkpoint",
              "versions": [
                {
                  "status": "affected",
                  "version": "R82.10 with Jumbo Hotfix Take 19 or below"
                },
                {
                  "status": "affected",
                  "version": "R82 with Jumbo Hotfix Take 103 or below"
                },
                {
                  "status": "affected",
                  "version": "R81.20 with Jumbo Hotfix Take 141 or below"
                },
                {
                  "status": "affected",
                  "version": "R81.10, R81, and R80.40"
                }
              ]
            },
            {
              "product": "Spark Firewalls",
              "vendor": "checkpoint",
              "versions": [
                {
                  "status": "affected",
                  "version": "R80.20.X, R81.10.X, and R82.00.X"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password."
            }
          ],
          "metrics": [
            {
              "format": "CVSS",
              "other": {
                "content": {
                  "attackComplexity": "LOW",
                  "attackRequirements": "NONE",
                  "attackVector": "NETWORK",
                  "baseScore": 9.3,
                  "baseSeverity": "CRITICAL",
                  "privilegesRequired": "NONE",
                  "subAvailabilityImpact": "NONE",
                  "subConfidentialityImpact": "NONE",
                  "subIntegrityImpact": "NONE",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N",
                  "version": "4.0",
                  "vulnAvailabilityImpact": "LOW",
                  "vulnConfidentialityImpact": "HIGH",
                  "vulnIntegrityImpact": "HIGH"
                },
                "type": "CVSSv4.0"
              },
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-287",
                  "description": "CWE-287: Improper Authentication.",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-08T11:07:15.746Z",
            "orgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45",
            "shortName": "checkpoint"
          },
          "references": [
            {
              "url": "https://support.checkpoint.com/results/sk/sk185033"
            }
          ],
          "title": "User Authentication Bypass in VPN Remote Access and Mobile Access"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45",
        "assignerShortName": "checkpoint",
        "cveId": "CVE-2026-50751",
        "datePublished": "2026-06-08T11:07:15.746Z",
        "dateReserved": "2026-06-07T09:42:08.251Z",
        "dateUpdated": "2026-06-10T13:37:27.725Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-24911 (GCVE-0-2024-24911)

    Vulnerability from cvelistv5 – Published: 2025-02-06 13:46 – Updated: 2025-02-06 14:11
    VLAI
    Title
    Out of Bounds read in the CPCA process on Check Point Management Server
    Summary
    In rare scenarios, the cpca process on the Security Management Server / Domain Management Server may exit unexpectedly, creating a core dump file. When the cpca process is down, VPN and SIC connectivity issues may occur if the CRL is not present in the Security Gateway's CRL cache.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    checkpoint Multi-Domain Security Management, Quantum Security Management Affected: Quantum Security Management R81 (EOS), R81.10, R81.20
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-24911",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-06T14:11:40.331277Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-06T14:11:48.901Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Multi-Domain Security Management, Quantum Security Management",
              "vendor": "checkpoint",
              "versions": [
                {
                  "status": "affected",
                  "version": "Quantum Security Management R81 (EOS), R81.10, R81.20"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In rare scenarios, the cpca process on the Security Management Server / Domain Management Server may exit unexpectedly, creating a core dump file. When the cpca process is down, VPN and SIC connectivity issues may occur if the CRL is not present in the Security Gateway\u0027s CRL cache."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-125",
                  "description": "CWE-125: Out-of-bounds Read",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-02-06T13:46:11.824Z",
            "orgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45",
            "shortName": "checkpoint"
          },
          "references": [
            {
              "url": "https://support.checkpoint.com/results/sk/sk183101"
            }
          ],
          "title": "Out of Bounds read in the CPCA process on Check Point Management Server"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45",
        "assignerShortName": "checkpoint",
        "cveId": "CVE-2024-24911",
        "datePublished": "2025-02-06T13:46:11.824Z",
        "dateReserved": "2024-02-01T15:19:26.278Z",
        "dateUpdated": "2025-02-06T14:11:48.901Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-24914 (GCVE-0-2024-24914)

    Vulnerability from cvelistv5 – Published: 2024-11-07 11:25 – Updated: 2024-11-07 17:33
    VLAI
    Summary
    Authenticated Gaia users can inject code or commands by global variables through special HTTP requests. A Security fix that mitigates this vulnerability is available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-914 - Improper Control of Dynamically-Identified Variables
    Assigner
    References
    Impacted products
    Vendor Product Version
    checkpoint ClusterXL, Multi-Domain Security Management, Quantum Appliances, Quantum Maestro, Quantum Scalable Chassis, Quantum Security Gateways, Quantum Security Management Affected: Check Point Quantum Gateways versions R81, R81.10, R81.20
    Create a notification for this product.
    checkpoint clusterxl Affected: r81
    Affected: r81.10
    Affected: r81.20
        cpe:2.3:a:checkpoint:clusterxl:*:*:*:*:*:*:*:*
    Create a notification for this product.
    checkpoint multi-domain_management Affected: r81
    Affected: r81.10
    Affected: r81.20
        cpe:2.3:a:checkpoint:multi-domain_management:*:*:*:*:*:*:*:*
    Create a notification for this product.
    checkpoint quantum_appliances Affected: r81
    Affected: r81.10
    Affected: r81.20
        cpe:2.3:a:checkpoint:quantum_appliances:*:*:*:*:*:*:*:*
    Create a notification for this product.
    checkpoint quantum_maestro Affected: r81
    Affected: r81.10
    Affected: r81.20
        cpe:2.3:a:checkpoint:quantum_maestro:*:*:*:*:*:*:*:*
    Create a notification for this product.
    checkpoint quantum_scalable_chassis Affected: r81
    Affected: r81.10
    Affected: r81.20
        cpe:2.3:a:checkpoint:quantum_scalable_chassis:*:*:*:*:*:*:*:*
    Create a notification for this product.
    checkpoint quantum_security_gateway Affected: r81
    Affected: r81.10
    Affected: r81.20
        cpe:2.3:a:checkpoint:quantum_security_gateway:*:*:*:*:*:*:*:*
    Create a notification for this product.
    checkpoint quantum_security_management Affected: r81
    Affected: r81.10
    Affected: r81.20
        cpe:2.3:a:checkpoint:quantum_security_management:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:checkpoint:clusterxl:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "clusterxl",
                "vendor": "checkpoint",
                "versions": [
                  {
                    "status": "affected",
                    "version": "r81"
                  },
                  {
                    "status": "affected",
                    "version": "r81.10"
                  },
                  {
                    "status": "affected",
                    "version": "r81.20"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:checkpoint:multi-domain_management:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "multi-domain_management",
                "vendor": "checkpoint",
                "versions": [
                  {
                    "status": "affected",
                    "version": "r81"
                  },
                  {
                    "status": "affected",
                    "version": "r81.10"
                  },
                  {
                    "status": "affected",
                    "version": "r81.20"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:checkpoint:quantum_appliances:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "quantum_appliances",
                "vendor": "checkpoint",
                "versions": [
                  {
                    "status": "affected",
                    "version": "r81"
                  },
                  {
                    "status": "affected",
                    "version": "r81.10"
                  },
                  {
                    "status": "affected",
                    "version": "r81.20"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:checkpoint:quantum_maestro:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "quantum_maestro",
                "vendor": "checkpoint",
                "versions": [
                  {
                    "status": "affected",
                    "version": "r81"
                  },
                  {
                    "status": "affected",
                    "version": "r81.10"
                  },
                  {
                    "status": "affected",
                    "version": "r81.20"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:checkpoint:quantum_scalable_chassis:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "quantum_scalable_chassis",
                "vendor": "checkpoint",
                "versions": [
                  {
                    "status": "affected",
                    "version": "r81"
                  },
                  {
                    "status": "affected",
                    "version": "r81.10"
                  },
                  {
                    "status": "affected",
                    "version": "r81.20"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:checkpoint:quantum_security_gateway:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "quantum_security_gateway",
                "vendor": "checkpoint",
                "versions": [
                  {
                    "status": "affected",
                    "version": "r81"
                  },
                  {
                    "status": "affected",
                    "version": "r81.10"
                  },
                  {
                    "status": "affected",
                    "version": "r81.20"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:checkpoint:quantum_security_management:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "quantum_security_management",
                "vendor": "checkpoint",
                "versions": [
                  {
                    "status": "affected",
                    "version": "r81"
                  },
                  {
                    "status": "affected",
                    "version": "r81.10"
                  },
                  {
                    "status": "affected",
                    "version": "r81.20"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-24914",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-07T16:56:57.795526Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-07T17:33:31.286Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "ClusterXL, Multi-Domain Security Management, Quantum Appliances, Quantum Maestro, Quantum Scalable Chassis, Quantum Security Gateways, Quantum Security Management",
              "vendor": "checkpoint",
              "versions": [
                {
                  "status": "affected",
                  "version": "Check Point Quantum Gateways versions R81, R81.10, R81.20"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Authenticated Gaia users can inject code or commands by global variables through special HTTP requests. A Security fix that mitigates this vulnerability is available."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-914",
                  "description": "CWE-914: Improper Control of Dynamically-Identified Variables",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-07T11:25:53.238Z",
            "orgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45",
            "shortName": "checkpoint"
          },
          "references": [
            {
              "url": "https://support.checkpoint.com/results/sk/sk182743"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45",
        "assignerShortName": "checkpoint",
        "cveId": "CVE-2024-24914",
        "datePublished": "2024-11-07T11:25:53.238Z",
        "dateReserved": "2024-02-01T15:19:26.278Z",
        "dateUpdated": "2024-11-07T17:33:31.286Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-30361 (GCVE-0-2021-30361)

    Vulnerability from cvelistv5 – Published: 2022-05-11 16:42 – Updated: 2024-08-03 22:32
    VLAI
    Summary
    The Check Point Gaia Portal's GUI Clients allowed authenticated administrators with permission for the GUI Clients settings to inject a command that would run on the Gaia OS.
    Severity
    No CVSS data available.
    CWE
    • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Check Point Gaia Portal Affected: before Jumbo HFAs released 13-Apr-2022
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T22:32:41.127Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://supportcontent.checkpoint.com/solutions?id=sk179128"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Check Point Gaia Portal",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "before Jumbo HFAs released 13-Apr-2022"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The Check Point Gaia Portal\u0027s GUI Clients allowed authenticated administrators with permission for the GUI Clients settings to inject a command that would run on the Gaia OS."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-05-11T16:42:52.000Z",
            "orgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45",
            "shortName": "checkpoint"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://supportcontent.checkpoint.com/solutions?id=sk179128"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@checkpoint.com",
              "ID": "CVE-2021-30361",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Check Point Gaia Portal",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "before Jumbo HFAs released 13-Apr-2022"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The Check Point Gaia Portal\u0027s GUI Clients allowed authenticated administrators with permission for the GUI Clients settings to inject a command that would run on the Gaia OS."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-78: Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://supportcontent.checkpoint.com/solutions?id=sk179128",
                  "refsource": "MISC",
                  "url": "https://supportcontent.checkpoint.com/solutions?id=sk179128"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45",
        "assignerShortName": "checkpoint",
        "cveId": "CVE-2021-30361",
        "datePublished": "2022-05-11T16:42:52.000Z",
        "dateReserved": "2021-04-07T00:00:00.000Z",
        "dateUpdated": "2024-08-03T22:32:41.127Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2013-7311 (GCVE-0-2013-7311)

    Vulnerability from cvelistv5 – Published: 2014-01-23 17:00 – Updated: 2024-09-16 23:32
    VLAI
    Summary
    The OSPF implementation in Check Point Gaia OS R75.X and R76 and IPSO OS 6.2 R75.X and R76 does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.kb.cert.org/vuls/id/BLUU-985QRC x_refsource_CONFIRM
    https://supportcenter.checkpoint.com/supportcente… x_refsource_CONFIRM
    http://www.kb.cert.org/vuls/id/229804 third-party-advisoryx_refsource_CERT-VN
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T18:01:20.568Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/BLUU-985QRC"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=\u0026solutionid=sk94490"
              },
              {
                "name": "VU#229804",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/229804"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The OSPF implementation in Check Point Gaia OS R75.X and R76 and IPSO OS 6.2 R75.X and R76 does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2014-01-23T17:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.kb.cert.org/vuls/id/BLUU-985QRC"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=\u0026solutionid=sk94490"
            },
            {
              "name": "VU#229804",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/229804"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2013-7311",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The OSPF implementation in Check Point Gaia OS R75.X and R76 and IPSO OS 6.2 R75.X and R76 does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://www.kb.cert.org/vuls/id/BLUU-985QRC",
                  "refsource": "CONFIRM",
                  "url": "http://www.kb.cert.org/vuls/id/BLUU-985QRC"
                },
                {
                  "name": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=\u0026solutionid=sk94490",
                  "refsource": "CONFIRM",
                  "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=\u0026solutionid=sk94490"
                },
                {
                  "name": "VU#229804",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/229804"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2013-7311",
        "datePublished": "2014-01-23T17:00:00.000Z",
        "dateReserved": "2014-01-23T00:00:00.000Z",
        "dateUpdated": "2024-09-16T23:32:05.658Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }