Credentials are not cleared from memory after being used. A user with Administrator permissions can execute memory dump for SmartConsole process and fetch them.
                
            Metrics
Affected Vendors & Products
References
        | Link | Providers | 
|---|---|
| https://support.checkpoint.com/results/sk/sk183545 |     | 
History
                    Wed, 03 Sep 2025 15:30:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| First Time appeared | Microsoft Microsoft windows | |
| Weaknesses | CWE-312 | |
| CPEs | cpe:2.3:a:checkpoint:smartconsole:r81.10:build400:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build402:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build404:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build406:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build407:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build409:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build410:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build412:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build413:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build414:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build416:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build417:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build418:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build420:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build423:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build424:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build425:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build426:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build427:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build428:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.10:build429:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.20:build640:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.20:build641:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.20:build645:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.20:build646:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.20:build649:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.20:build651:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.20:build653:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.20:build654:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.20:build655:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.20:build656:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.20:build658:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.20:build659:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.20:build660:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.20:build661:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r81.20:build663:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r82:build1051:*:*:*:*:*:* cpe:2.3:a:checkpoint:smartconsole:r82:build1053:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* | |
| Vendors & Products | Microsoft Microsoft windows | 
Mon, 30 Jun 2025 14:15:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Metrics | ssvc 
 | 
Sun, 29 Jun 2025 12:15:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Description | Credentials are not cleared from memory after being used. A user with Administrator permissions can execute memory dump for SmartConsole process and fetch them. | |
| Title | SmartConsole Sensitive Credential Exposure via Memory Dump | |
| Weaknesses | CWE-316 | |
| References |  | |
| Metrics | cvssV3_1 
 | 
 MITRE
                        MITRE
                    Status: PUBLISHED
Assigner: checkpoint
Published: 2025-06-29T12:02:41.126Z
Updated: 2025-06-30T13:32:15.417Z
Reserved: 2024-02-01T15:19:26.278Z
Link: CVE-2024-24915
 Vulnrichment
                        Vulnrichment
                    Updated: 2025-06-30T13:14:17.469Z
 NVD
                        NVD
                    Status : Analyzed
Published: 2025-06-29T12:15:22.803
Modified: 2025-09-03T15:22:49.070
Link: CVE-2024-24915
 Redhat
                        Redhat
                    No data.