Check Point Fixes Zero-Day CVE-2024-24919 Exploited in the Wild

Threat Level – Red | Vulnerability Report
Download PDF


CVE-2024-24919 is a zero-day vulnerability in Check Point Security Gateways that allows attackers to read sensitive information when remote Access VPN or Mobile Access Software Blades are enabled. This vulnerability has been exploited in the wild since April 30, 2024, to steal Active Directory data. Check Point has released hotfixes for affected versions, and users are advised to update their AD passwords if they cannot apply the patches immediately.

Threat Level – Red | Vulnerability Report

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox