This page lists publicly disclosed CVE vulnerabilities affecting checkpoint remote_access_vpn (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-52885 | The Mobile Access Portal's File Share application is vulnerable to a directory traversal attack, allowing an authenticated, malicious end-user (authorized to at least one File Share application) to list the file names of 'nobody'-accessible directories on the Mobile Access gateway. | [email protected] | 5.0 | 0.25% | 2025-08-06 | 2025-08-27 |
| CVE-2024-52888 | For an authenticated end-user the portal may run a script while attempting to display a directory or some file's properties. | [email protected] | 5.4 | 0.18% | 2025-04-27 | 2025-09-02 |
| CVE-2024-52887 | Authenticated end-user may set a specially crafted SNX bookmark that can make their browser run a script while accessing their own bookmark list. | [email protected] | 3.5 | 0.18% | 2025-04-27 | 2025-09-02 |