module
Check Point Security Gateway Arbitrary File Read
| Disclosed | Created |
|---|---|
| 01/01/1970 | 06/13/2024 |
Disclosed
01/01/1970
Created
06/13/2024
Description
This module leverages an unauthenticated arbitrary root file read vulnerability for
Check Point Security Gateway appliances. When the IPSec VPN or Mobile Access blades
are enabled on affected devices, traversal payloads can be used to read any files on
the local file system. Password hashes read from disk may be cracked, potentially
resulting in administrator-level access to the target device. This vulnerability is
tracked as CVE-2024-24919.
Check Point Security Gateway appliances. When the IPSec VPN or Mobile Access blades
are enabled on affected devices, traversal payloads can be used to read any files on
the local file system. Password hashes read from disk may be cracked, potentially
resulting in administrator-level access to the target device. This vulnerability is
tracked as CVE-2024-24919.
Author
remmons-r7
References
Module Options
To display the available options, load the module within the Metasploit console and run the commands ‘show options’ or ‘show advanced’:
msf > use auxiliary/gather/checkpoint_gateway_fileread_cve_2024_24919
msf /(9) > show actions
...actions...
msf /(9) > set ACTION < action-name >
msf /(9) > show options
...show and set options...
msf /(9) > run
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.