Local Privilege Escalation vulnerability in Check Point Identity Agent Full...

7.8 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

A local privilege escalation vulnerability exists in Check Point Identity Agent Full for Windows OS. An authenticated local user may be able to execute arbitrary code with SYSTEM privileges due to improper handling of executable resolution during the log collection process. Successful exploitation could allow an attacker to gain elevated privileges on the affected Windows endpoint.

Basic Information

ID CVE-2026-10847

Source checkpoint

Published Jun 11, 2026 at 13:52

Affected Product

Vendor checkpoint

Product Identity Agent

Version Versions prior to 81.087.0000

Affected Versions checkpoint Identity Agent Versions prior to 81.087.0000

CWE Classification

CWE-427

References

support.checkpoint.com /results/sk/sk185052

{
    "lastseen": "",
    "description": "A local privilege escalation vulnerability exists in Check Point Identity Agent Full for Windows OS. An authenticated local user may be able to execute arbitrary code with SYSTEM privileges due to improper handling of executable resolution during the log collection process. Successful exploitation could allow an attacker to gain elevated privileges on the affected Windows endpoint.",
    "published": "2026-06-11T13:52:11.651Z",
    "modified": "2026-06-11T13:52:11.651Z",
    "type": "cve",
    "title": "Local Privilege Escalation vulnerability in Check Point Identity Agent Full for Windows OS",
    "source": "checkpoint",
    "references": "https://support.checkpoint.com/results/sk/sk185052",
    "id": "CVE-2026-10847",
    "bulletinFamily": "",
    "cwe": [
        "CWE-427"
    ],
    "cvelist": null,
    "sourceData": "checkpoint Identity Agent Versions prior to 81.087.0000",
    "sourceHref": "",
    "cvss": {
        "score": 7.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Identity Agent",
    "version": "Versions prior to 81.087.0000",
    "vendor": "checkpoint",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Local Privilege Escalation vulnerability in Check Point Identity Agent Full for Windows OS_CVE-2026-10847