Authenticated Gaia users can inject code or commands by global variables through special HTTP requests. A Security fix that mitigates this vulnerability is available.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://support.checkpoint.com/results/sk/sk182743 |
History
Thu, 07 Nov 2024 18:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Checkpoint
Checkpoint clusterxl Checkpoint multi-domain Management Checkpoint quantum Appliances Checkpoint quantum Maestro Checkpoint quantum Scalable Chassis Checkpoint quantum Security Gateway Checkpoint quantum Security Management |
|
CPEs | cpe:2.3:a:checkpoint:clusterxl:*:*:*:*:*:*:*:* cpe:2.3:a:checkpoint:multi-domain_management:*:*:*:*:*:*:*:* cpe:2.3:a:checkpoint:quantum_appliances:*:*:*:*:*:*:*:* cpe:2.3:a:checkpoint:quantum_maestro:*:*:*:*:*:*:*:* cpe:2.3:a:checkpoint:quantum_scalable_chassis:*:*:*:*:*:*:*:* cpe:2.3:a:checkpoint:quantum_security_gateway:*:*:*:*:*:*:*:* cpe:2.3:a:checkpoint:quantum_security_management:*:*:*:*:*:*:*:* |
|
Vendors & Products |
Checkpoint
Checkpoint clusterxl Checkpoint multi-domain Management Checkpoint quantum Appliances Checkpoint quantum Maestro Checkpoint quantum Scalable Chassis Checkpoint quantum Security Gateway Checkpoint quantum Security Management |
|
Metrics |
ssvc
|
Thu, 07 Nov 2024 11:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Authenticated Gaia users can inject code or commands by global variables through special HTTP requests. A Security fix that mitigates this vulnerability is available. | |
Weaknesses | CWE-914 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: checkpoint
Published: 2024-11-07T11:25:53.238Z
Updated: 2024-11-07T17:33:31.286Z
Reserved: 2024-02-01T15:19:26.278Z
Link: CVE-2024-24914
Vulnrichment
Updated: 2024-11-07T17:27:43.955Z
NVD
Status : Awaiting Analysis
Published: 2024-11-07T12:15:24.327
Modified: 2024-11-08T19:01:03.880
Link: CVE-2024-24914
Redhat
No data.