CVE-2024-24910
HIGHCheck Point ZoneAlarm ExtremeSecurity - Privilege Escalation
Title source: llmDescription
A local attacker can erscalate privileges on affected Check Point ZoneAlarm ExtremeSecurity NextGen, Identity Agent for Windows, and Identity Agent for Windows Terminal Server. To exploit this vulnerability, an attacker must first obtain the ability to execute local privileged code on the target system.
References (1)
Core 1
Core References
Vendor Advisory
https://support.checkpoint.com/results/sk/sk182219
Scores
CVSS v3
7.3
EPSS
0.0009
EPSS Percentile
24.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-732
Status
published
Products (2)
checkpoint/identity_agent
< r81.070.0000
checkpoint/zonealarm_extreme_security_nextgen
< 4.2.712
Published
Apr 18, 2024
Tracked Since
Feb 18, 2026