CVE-2026-10847

Published Jun 11, 2026

Last updated 3 days ago

CVSS high 7.8

Overview

Description
A local privilege escalation vulnerability exists in Check Point Identity Agent Full for Windows OS. An authenticated local user may be able to execute arbitrary code with SYSTEM privileges due to improper handling of executable resolution during the log collection process. Successful exploitation could allow an attacker to gain elevated privileges on the affected Windows endpoint.
Source
cve@checkpoint.com
NVD status
Deferred

Risk scores

CVSS 3.1

Type
Secondary
Base score
7.8
Impact score
5.9
Exploitability score
1.8
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity
HIGH

Weaknesses

cve@checkpoint.com
CWE-427

Social media

Hype score
Not currently trending

  1. CVE-2026-10847 - Privilege Escalation in Check Point Identity Agent. Local authenticated user can execute code with SYSTEM privileges. CVSS 7.8. No patch available. Restrict access immediately. #CVE #CheckPoint #infosec #CVEAlert #VPN More detailed info: https://t.co/TQypge3ooO

    @HugoValters

    12 Jun 2026

    62 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.