CVE Catalog

CVE-2026-10847

HighCVSS 7.8
Published: Updated: Translated: NVD NIST

Summary

A local privilege escalation vulnerability exists in Check Point Identity Agent Full for Windows OS. An authenticated local user may be able to execute arbitrary code with SYSTEM privileges due to improper handling of executable resolution during the log collection process.

Risk Assessment

Successful exploitation could allow an attacker to gain elevated privileges on the affected Windows endpoint, posing a serious security threat to the system.

Recommendation

It is recommended to update Check Point Identity Agent Full to the latest version to mitigate this vulnerability and to monitor logs for potential privilege escalation attempts.

Original NVD description (English source)

A local privilege escalation vulnerability exists in Check Point Identity Agent Full for Windows OS. An authenticated local user may be able to execute arbitrary code with SYSTEM privileges due to improper handling of executable resolution during the log collection process. Successful exploitation could allow an attacker to gain elevated privileges on the affected Windows endpoint.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS