漏洞描述
Check Point Security Gateways任意文件读取漏洞(CVE-2024-24919)存在在野利用,远程攻击者可以通过构造恶意请求读取服务器上的任意文件,造成敏感信息的泄漏。目前,此漏洞已检测到在野利用。鉴于该漏洞影响范围较大,建议客户尽快做好自查及防护。
Check Point 安全网关任意文件读取漏洞(CVE-2024-24919)
PoC代码
暂无相关漏洞推荐
- POC sharepoint-lists-api-disclosure: Microsoft SharePoint - List API Disclosure
- 锁群管理系统 /inc/CheckLogin.aspx 默认口令漏洞
- POC sharepoint-layouts-disclosure: Microsoft SharePoint - Layouts Disclosure
- POC sharepoint-masterpage-disclosure: Microsoft SharePoint - Master Page Disclosure
- POC sharepoint-site-metadata-disclosure: Microsoft SharePoint - Site Metadata Disclosure
- POC sharepoint-sitepages-disclosure: Microsoft SharePoint - Site Pages Disclosure
- POC CVE-2025-49706: Microsoft SharePoint Server - Authentication Bypass
- Easy7综合管理平台 /file/uploadCheckImg 接口 文件上传漏洞
- (CVE-2025-53770)Microsoft SharePoint Server反序列化漏洞允许远程代码执行
- POC 科汛软件有限公司 科汛新职教网校系统 /Webapi/App/CheckUser SQL 注入漏洞
- 天地伟业Easy7综合管理平台 uploadCheckImg 任意文件上传漏洞
- 智邦国际ERP /SYSN/json/pcclient/CheckSealPwd.ashx SQL 注入漏洞
- chanjet-tplus-checkpassword-sqli: 用友 畅捷通T+ CheckPassword SQL注入漏洞