8
CVE-2024-24914
- EPSS 0.21%
- Published 07.11.2024 12:15:24
- Last modified 26.08.2025 16:40:18
- Source cve@checkpoint.com
- Teams watchlist Login
- Open Login
Authenticated Gaia users can inject code or commands by global variables through special HTTP requests. A Security fix that mitigates this vulnerability is available.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
This information is available to logged-in users. Login
Data is provided by the National Vulnerability Database (NVD)
Checkpoint ≫ Gaia Os Versionr81
Checkpoint ≫ Clusterxl Version-
Checkpoint ≫ Multi-domain Management Version-
Checkpoint ≫ Quantum 6700 Version-
Checkpoint ≫ Quantum Maestro Version-
Checkpoint ≫ Quantum Scalable Chassis Version-
Checkpoint ≫ Quantum Security Gateway Version-
Checkpoint ≫ Quantum Security Management Version-
Checkpoint ≫ Quantum Spark Version-
Checkpoint ≫ Multi-domain Management Version-
Checkpoint ≫ Quantum 6700 Version-
Checkpoint ≫ Quantum Maestro Version-
Checkpoint ≫ Quantum Scalable Chassis Version-
Checkpoint ≫ Quantum Security Gateway Version-
Checkpoint ≫ Quantum Security Management Version-
Checkpoint ≫ Quantum Spark Version-
Checkpoint ≫ Gaia Os Versionr81.10
Checkpoint ≫ Clusterxl Version-
Checkpoint ≫ Multi-domain Management Version-
Checkpoint ≫ Quantum 6700 Version-
Checkpoint ≫ Quantum Maestro Version-
Checkpoint ≫ Quantum Scalable Chassis Version-
Checkpoint ≫ Quantum Security Gateway Version-
Checkpoint ≫ Quantum Security Management Version-
Checkpoint ≫ Quantum Spark Version-
Checkpoint ≫ Multi-domain Management Version-
Checkpoint ≫ Quantum 6700 Version-
Checkpoint ≫ Quantum Maestro Version-
Checkpoint ≫ Quantum Scalable Chassis Version-
Checkpoint ≫ Quantum Security Gateway Version-
Checkpoint ≫ Quantum Security Management Version-
Checkpoint ≫ Quantum Spark Version-
Checkpoint ≫ Gaia Os Versionr81.20
Checkpoint ≫ Clusterxl Version-
Checkpoint ≫ Multi-domain Management Version-
Checkpoint ≫ Quantum 6700 Version-
Checkpoint ≫ Quantum Maestro Version-
Checkpoint ≫ Quantum Scalable Chassis Version-
Checkpoint ≫ Quantum Security Gateway Version-
Checkpoint ≫ Quantum Security Management Version-
Checkpoint ≫ Quantum Spark Version-
Checkpoint ≫ Multi-domain Management Version-
Checkpoint ≫ Quantum 6700 Version-
Checkpoint ≫ Quantum Maestro Version-
Checkpoint ≫ Quantum Scalable Chassis Version-
Checkpoint ≫ Quantum Security Gateway Version-
Checkpoint ≫ Quantum Security Management Version-
Checkpoint ≫ Quantum Spark Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.21% | 0.437 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| cve@checkpoint.com | 8 | 2.1 | 5.9 |
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-914 Improper Control of Dynamically-Identified Variables
The product does not properly restrict reading from or writing to dynamically-identified variables.