CVE-2026-10847
HighCVSS 7.8Summary
A local privilege escalation vulnerability exists in Check Point Identity Agent Full for Windows OS. An authenticated local user may be able to execute arbitrary code with SYSTEM privileges due to improper handling of executable resolution during the log collection process.
Risk Assessment
Successful exploitation could allow an attacker to gain elevated privileges on the affected Windows endpoint, posing a serious security threat to the system.
Recommendation
It is recommended to update Check Point Identity Agent Full to the latest version to mitigate this vulnerability and to monitor logs for potential privilege escalation attempts.
Original NVD description (English source)
A local privilege escalation vulnerability exists in Check Point Identity Agent Full for Windows OS. An authenticated local user may be able to execute arbitrary code with SYSTEM privileges due to improper handling of executable resolution during the log collection process. Successful exploitation could allow an attacker to gain elevated privileges on the affected Windows endpoint.

