Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-24919 PoC — Information disclosure

Source
https://github.com/pewc0/CVE-2024-24919
Associated Vulnerability
Title:Information disclosure (CVE-2024-24919)
Description:Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected to the internet and enabled with remote Access VPN or Mobile Access Software Blades. A Security fix that mitigates this vulnerability is available.
Readme
# CVE-2024-24919

## Usage
- Usage: ./CVE-2024-24919.sh -i <ip> [-p <path, default=/etc/passwd>] [-f <file_path>]
- Specifying an IP with -i
```bash
./CVE-2024-24919.sh -i 190.XXX.XXX.XXX
```
![ksnip_20240530-203154](https://github.com/jsebastianherrera/CVE-2024-24919/assets/66764041/d1014c77-a7e9-44fd-b7f4-0431d144a899)

- Check multiples IP with -f
```bash
./CVE-2024-24919.sh -f  uniq.txt
```
- - File example
```
192.168.0.1
192.168.0.2
192.168.0.3
...
192.168.0.20
```
![2](https://github.com/jsebastianherrera/CVE-2024-24919/assets/66764041/8ee646fe-075a-4651-ad3a-090dd113b5ee)
File Snapshot

 [4.0K]  /data/pocs/b33a731393cdf0e595caec95940134e68374c81f
├── [1.8K]  CVE-2024-24919.sh
└── [ 588]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →