Check Point Fixes Zero-Day CVE-2024-24919 Exploited in the Wild

CVE-2024-24919 is a zero-day vulnerability in Check Point Security Gateways that allows attackers to read sensitive information when remote Access VPN or Mobile Access Software Blades are enabled. This vulnerability has been exploited in the wild since April 30, 2024, to steal Active Directory data. Check Point has released hotfixes for affected versions, and users are advised to update their AD passwords if they cannot apply the patches immediately.