CVE-2026-10847 | THREATINT

Description

A local privilege escalation vulnerability exists in Check Point Identity Agent Full for Windows OS. An authenticated local user may be able to execute arbitrary code with SYSTEM privileges due to improper handling of executable resolution during the log collection process. Successful exploitation could allow an attacker to gain elevated privileges on the affected Windows endpoint.

PUBLISHED Reserved 2026-06-04 | Published 2026-06-11 | Updated 2026-06-11 | Assigner checkpoint

HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem types

Uncontrolled Search Path Element

Product status

Versions prior to 81.087.0000

affected

References

support.checkpoint.com/results/sk/sk185052 (Check Point Security Advisory for CVE-2026-10847) vendor-advisory

cve.org (CVE-2026-10847)

nvd.nist.gov (CVE-2026-10847)

Download JSON