Credentials are not cleared from memory after being used. A user with Administrator permissions can execute memory dump for SmartConsole process and fetch them.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 03 Sep 2025 15:30:00 +0000

Type Values Removed Values Added
First Time appeared Microsoft
Microsoft windows
Weaknesses CWE-312
CPEs cpe:2.3:a:checkpoint:smartconsole:r81.10:build400:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build402:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build404:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build406:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build407:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build409:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build410:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build412:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build413:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build414:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build416:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build417:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build418:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build420:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build423:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build424:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build425:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build426:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build427:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build428:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.10:build429:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.20:build640:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.20:build641:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.20:build645:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.20:build646:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.20:build649:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.20:build651:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.20:build653:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.20:build654:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.20:build655:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.20:build656:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.20:build658:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.20:build659:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.20:build660:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.20:build661:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r81.20:build663:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r82:build1051:*:*:*:*:*:*
cpe:2.3:a:checkpoint:smartconsole:r82:build1053:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Vendors & Products Microsoft
Microsoft windows

Mon, 30 Jun 2025 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Sun, 29 Jun 2025 12:15:00 +0000

Type Values Removed Values Added
Description Credentials are not cleared from memory after being used. A user with Administrator permissions can execute memory dump for SmartConsole process and fetch them.
Title SmartConsole Sensitive Credential Exposure via Memory Dump
Weaknesses CWE-316
References
Metrics cvssV3_1

{'score': 6.1, 'vector': 'CVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: checkpoint

Published:

Updated: 2025-06-30T13:32:15.417Z

Reserved: 2024-02-01T15:19:26.278Z

Link: CVE-2024-24915

cve-icon Vulnrichment

Updated: 2025-06-30T13:14:17.469Z

cve-icon NVD

Status : Analyzed

Published: 2025-06-29T12:15:22.803

Modified: 2025-09-03T15:22:49.070

Link: CVE-2024-24915

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2025-07-06T22:16:30Z