Description
When the Identity Awareness blade is enabled with Browser-Based Authentication, an unauthenticated user may be able to read certain internal files on the Security Gateway.
Published: 2026-05-26
Score: 7.5 High
EPSS: 4.8% Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a local file inclusion flaw that permits an unauthenticated user, while the Identity Awareness blade is enabled with Browser‑Based Authentication, to read specific internal files on the device. The flaw can expose configuration files or other sensitive data, thereby compromising confidentiality. It is classified as CWE‑98.

Affected Systems

The Checkpoint Quantum Security Gateway is affected. No specific build or version identifiers are supplied, so any current installation running the Identity Awareness blade with Browser‑Based Authentication may be vulnerable.

Risk and Exploitability

The CVSS score of 7.5 demonstrates a high potential impact on confidentiality. The EPSS value of 5% indicates a moderate likelihood that the vulnerability could be actively exploited. The vulnerability is not listed in the CISA KEV catalog, suggesting no known public exploits, but attackers may exploit it by sending a crafted request to the web interface that bypasses path validation to obtain internal file contents. Authentication is not required to launch the attack; this detail is inferred from the stated unauthenticated nature of the flaw.

Generated by OpenCVE AI on June 17, 2026 at 10:22 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Check the vendor’s support portal for any firmware or patch releases that address the local file inclusion issue.
  • If an update is not available, disable the Identity Awareness blade or remove Browser‑Based Authentication entirely, ensuring unauthenticated users cannot access the web interface.
  • Limit access to the Quantum Security Gateway’s web management interface to trusted management networks by applying firewall rules or VLAN segmentation, thereby restricting unauthenticated traffic.
  • Configure the device’s web server, if possible, to reject or sanitize directory traversal sequences, providing an additional defensive layer.

Generated by OpenCVE AI on June 17, 2026 at 10:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 02 Jun 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 26 May 2026 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Checkpoint
Checkpoint quantum Security Gateway
Vendors & Products Checkpoint
Checkpoint quantum Security Gateway

Tue, 26 May 2026 13:45:00 +0000

Type Values Removed Values Added
Description When the Identity Awareness blade is enabled with Browser-Based Authentication, an unauthenticated user may be able to read certain internal files on the Security Gateway.
Title Identity Awareness Captive Portal - Unauthenticated Local File Inclusion
Weaknesses CWE-98
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}

Subscriptions

Checkpoint Quantum Security Gateway
cve-icon MITRE

Status: PUBLISHED

Assigner: checkpoint

Published:

Updated: 2026-06-02T14:14:24.478Z

Reserved: 2026-05-20T19:29:00.635Z

Link: CVE-2026-48133

cve-icon Vulnrichment

Updated: 2026-06-02T14:14:20.255Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-26T14:16:38.730

Modified: 2026-05-26T19:09:11.220

Link: CVE-2026-48133

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-17T10:30:06Z

Weaknesses
  • CWE-98

    Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')