Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-24919 PoC — Check Point Security Gateways 安全漏洞

Source
https://github.com/GlobalsecureAcademy/CVE-2024-24919
Associated Vulnerability
Title:Check Point Security Gateways 安全漏洞 (CVE-2024-24919)
Description:Check Point Security Gateways是以色列Check Point公司的一个人工智能驱动的 NGFW 安全网关。 Check Point Security Gateways 存在安全漏洞。攻击者利用该漏洞可以获取敏感信息。
Description
Exploit tool to validate CVE-2024-24919 vulnerability on Checkpoint Firewall VPNs
Readme
# CVE-2024-24919
Exploit tool to validate CVE-2024-24919 vulnerability on Checkpoint Firewall VPNs

This tool creates an output folder containing a "Target-IP.txt" file. This file includes the contents of the /etc/passwd file from the affected target, thereby determining if the system is vulnerable or not.

In order to run this tool you only need Python 3. To run the tool, use the following command:

python3 CVE-2024-24919.py -i Target-IP

more information about the vulnerability on:
https://thehackernews.com/2024/05/check-point-warns-of-zero-day-attacks.html

https://nvd.nist.gov/vuln/detail/CVE-2024-24919

https://www.rapid7.com/blog/post/2024/05/30/etr-cve-2024-24919-check-point-security-gateway-information-disclosure/

# Remember to use this tool only on systems for which you have authorization.
# This tool is intended solely for research and security auditing purposes.
Manuel Moreno - GLOBALSECURE
https://www.linkedin.com/in/manu0x01/
File Snapshot

 [4.0K]  /data/pocs/87e87de725e86d1d8f3e8710114ef25a2336b29b
├── [1.9K]  CVE-2024-24919.py
└── [ 955]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.