{"document":{"category":"csaf_vex","csaf_version":"2.0","title":"CVE-2026-10847: Local Privilege Escalation vulnerability in Check Point Identity Agent Full for Windows OS","publisher":{"category":"vendor","name":"HarborGuard Database","namespace":"https://database.harborguard.co"},"tracking":{"id":"CVE-2026-10847","status":"final","version":"1","initial_release_date":"2026-06-11T13:52:11.651Z","current_release_date":"2026-06-11T14:20:43.159Z","revision_history":[{"date":"2026-06-11T13:52:11.651Z","number":"1","summary":"Initial machine-readable export from HarborGuard."}]},"distribution":{"tlp":{"label":"WHITE"},"text":"Public CVE data; freely redistributable."},"notes":[{"category":"description","text":"A local privilege escalation vulnerability exists in Check Point Identity Agent Full for Windows OS. An authenticated local user may be able to execute arbitrary code with SYSTEM privileges due to improper handling of executable resolution during the log collection process. Successful exploitation could allow an attacker to gain elevated privileges on the affected Windows endpoint.","title":"CVE description"}],"references":[{"category":"self","summary":"CVE-2026-10847 on HarborGuard Database","url":"https://database.harborguard.co/cve/CVE-2026-10847"},{"category":"external","summary":"CVE Record","url":"https://www.cve.org/CVERecord?id=CVE-2026-10847"},{"category":"external","summary":"Check Point Security Advisory for CVE-2026-10847","url":"https://support.checkpoint.com/results/sk/sk185052"}]},"product_tree":{"branches":[{"category":"vendor","name":"checkpoint","branches":[{"category":"product_name","name":"Identity Agent","branches":[{"category":"product_version","name":"Versions prior to 81.087.0000","product":{"name":"checkpoint Identity Agent Versions prior to 81.087.0000","product_id":"CSAFPID-1","product_identification_helper":{"cpe":"cpe:2.3:a:checkpoint:identity_agent:versions_prior_to_81.087.0000:*:*:*:*:*:*:*"}}}]}]}]},"vulnerabilities":[{"cve":"CVE-2026-10847","title":"Local Privilege Escalation vulnerability in Check Point Identity Agent Full for Windows OS","notes":[{"category":"description","text":"A local privilege escalation vulnerability exists in Check Point Identity Agent Full for Windows OS. An authenticated local user may be able to execute arbitrary code with SYSTEM privileges due to improper handling of executable resolution during the log collection process. Successful exploitation could allow an attacker to gain elevated privileges on the affected Windows endpoint.","title":"CVE description"}],"product_status":{"known_affected":["CSAFPID-1"]},"scores":[{"cvss_v3":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH"},"products":["CSAFPID-1"]}],"remediations":[{"category":"none_available","details":"No fixed version is published yet. Monitor the upstream advisory.","product_ids":["CSAFPID-1"]}]}]}