A local attacker can escalate privileges on affected Check Point ZoneAlarm Extreme Security NextGen, Identity Agent for Windows, and Identity Agent for Windows Terminal Server. To exploit this vulnerability, an attacker must first obtain the ability to execute local privileged code on the target system.
References
Link | Resource |
---|---|
https://support.checkpoint.com/results/sk/sk182219 | Vendor Advisory |
https://support.checkpoint.com/results/sk/sk182219 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
26 Aug 2025, 18:42
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:a:checkpoint:identity_agent:*:*:*:*:*:*:*:* cpe:2.3:a:checkpoint:zonealarm_extreme_security:*:*:*:*:*:*:*:* |
|
First Time |
Microsoft windows
Checkpoint Checkpoint zonealarm Extreme Security Microsoft Checkpoint identity Agent |
|
References | () https://support.checkpoint.com/results/sk/sk182219 - Vendor Advisory |
21 Nov 2024, 08:59
Type | Values Removed | Values Added |
---|---|---|
References | () https://support.checkpoint.com/results/sk/sk182219 - |
03 Jul 2024, 01:48
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.3 |
Summary |
|
18 Apr 2024, 18:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-18 18:15
Updated : 2025-08-26 18:42
NVD link : CVE-2024-24910
Mitre link : CVE-2024-24910
CVE.ORG link : CVE-2024-24910
JSON object : View
Products Affected
microsoft
- windows
checkpoint
- zonealarm_extreme_security
- identity_agent
CWE
CWE-732
Incorrect Permission Assignment for Critical Resource