Check Point Quantum Security Gateways contains an unspecified information disclosure vulnerability. The vulnerability potentially allows an attacker to access information on Gateways connected to the internet, with IPSec VPN, Remote Access VPN or Mobile Access enabled. This issue affects several product lines from Check Point, including CloudGuard Network, Quantum Scalable Chassis, Quantum Security Gateways, and Quantum Spark Appliances and can have severe consequences including:
- Confidential Information Exposure
- Operational Disruption
- Reputation Damage
- Compliance and Legal Issues
- Financial Impact
- Competitive Advantage
This vulnerability poses a substantial risk to the organization’s information security, operational stability, regulatory compliance, financial health, and market reputation, making it crucial to address this immediately.
Armis identified this risk 1 day earlier for our customers:
- CISA KEV Date: May 30, 2024
- Armis Labs: May 29, 2024