Home

Description

For an authenticated end-user the portal may run a script while attempting to display a directory or some file's properties.

PUBLISHED Reserved 2024-11-17 | Published 2025-04-27 | Updated 2025-04-28 | Assigner checkpoint




MEDIUM: 5.4CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Problem types

CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting').

Product status

Check Point Mobile Access versions R81.10, R81.20, R82
affected

References

support.checkpoint.com/results/sk/sk183055

cve.org (CVE-2024-52888)

nvd.nist.gov (CVE-2024-52888)

Download JSON