7.2
CVE-2024-24915
- EPSS 0.14%
- Veröffentlicht 29.06.2025 12:02:41
- Zuletzt bearbeitet 03.09.2025 15:22:49
- Quelle cve@checkpoint.com
- CVE-Watchlists
- Unerledigt
SmartConsole Sensitive Credential Exposure via Memory Dump
Credentials are not cleared from memory after being used. A user with Administrator permissions can execute memory dump for SmartConsole process and fetch them.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild400
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild402
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild404
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild406
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild407
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild409
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild410
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild412
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild413
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild414
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild416
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild417
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild418
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild420
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild423
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild424
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild425
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild426
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild427
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild428
Checkpoint ≫ Smartconsole Versionr81.10 Updatebuild429
Checkpoint ≫ Smartconsole Versionr81.20 Updatebuild640
Checkpoint ≫ Smartconsole Versionr81.20 Updatebuild641
Checkpoint ≫ Smartconsole Versionr81.20 Updatebuild645
Checkpoint ≫ Smartconsole Versionr81.20 Updatebuild646
Checkpoint ≫ Smartconsole Versionr81.20 Updatebuild649
Checkpoint ≫ Smartconsole Versionr81.20 Updatebuild651
Checkpoint ≫ Smartconsole Versionr81.20 Updatebuild653
Checkpoint ≫ Smartconsole Versionr81.20 Updatebuild654
Checkpoint ≫ Smartconsole Versionr81.20 Updatebuild655
Checkpoint ≫ Smartconsole Versionr81.20 Updatebuild656
Checkpoint ≫ Smartconsole Versionr81.20 Updatebuild658
Checkpoint ≫ Smartconsole Versionr81.20 Updatebuild659
Checkpoint ≫ Smartconsole Versionr81.20 Updatebuild660
Checkpoint ≫ Smartconsole Versionr81.20 Updatebuild661
Checkpoint ≫ Smartconsole Versionr81.20 Updatebuild663
Checkpoint ≫ Smartconsole Versionr82 Updatebuild1051
Checkpoint ≫ Smartconsole Versionr82 Updatebuild1053
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.14% | 0.343 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 1.2 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
|
| cve@checkpoint.com | 6.1 | 0.2 | 5.9 |
CVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
|
CWE-312 Cleartext Storage of Sensitive Information
The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.
CWE-316 Cleartext Storage of Sensitive Information in Memory
The product stores sensitive information in cleartext in memory.