Checkpoint Harmony Endpoint vulnerabilities

CVE-2024-24912 [MEDIUM] CWE-732 CVE-2024-24912: A local privilege escalation vulnerability has been identified in Harmony Endpoint Security Client f A local privilege escalation vulnerability has been identified in Harmony Endpoint Security Client for Windows versions E88.10 and below. To exploit this vulnerability, an attacker must first obtain the ability to execute local privileged code on the target system.

CVE-2023-28134 [HIGH] CWE-732 CVE-2023-28134: Local attacker can escalate privileges on affected installations of Check Point Harmony Endpoint/Zon Local attacker can escalate privileges on affected installations of Check Point Harmony Endpoint/ZoneAlarm Extreme Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

CVE-2022-23744 [LOW] CWE-470 CVE-2022-23744: Check Point Endpoint before version E86.50 failed to protect against specific registry change which Check Point Endpoint before version E86.50 failed to protect against specific registry change which allowed to disable endpoint protection by a local administrator.