mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-05-29 01:31:47 +00:00
74 lines
2.4 KiB
JSON
74 lines
2.4 KiB
JSON
{
|
|
"data_version": "4.0",
|
|
"data_type": "CVE",
|
|
"data_format": "MITRE",
|
|
"CVE_data_meta": {
|
|
"ID": "CVE-2024-24912",
|
|
"ASSIGNER": "cve@checkpoint.com",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "A local privilege escalation vulnerability has been identified in Harmony Endpoint Security Client for Windows versions E88.10 and below. To exploit this vulnerability, an attacker must first obtain the ability to execute local privileged code on the target system."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "CWE-732: Incorrect Permission Assignment for Critical Resource",
|
|
"cweId": "CWE-732"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"vendor_name": "checkpoint",
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "Harmony Endpoint Security Client for Windows",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Harmony Endpoint Security Client for Windows versions E88.10 and below"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"url": "https://support.checkpoint.com/results/sk/sk182244",
|
|
"refsource": "MISC",
|
|
"name": "https://support.checkpoint.com/results/sk/sk182244"
|
|
}
|
|
]
|
|
},
|
|
"credits": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Kolja Grassmann (Cirosec GmbH)"
|
|
},
|
|
{
|
|
"lang": "en",
|
|
"value": "Alain R\u00f6del (Neodyme)"
|
|
}
|
|
]
|
|
} |