Lucene search
K
Checkpoint SecurityMost viewed

203 matches found

CheckPoint Security
CheckPoint Security
•added 2007/10/15 10:0 p.m.•18 views

Check Point response to OpenSSL vulnerability CVE-2007-5135

...

6.8CVSS1.9AI score0.16061EPSS
Exploits0Affected Software8
CheckPoint Security
CheckPoint Security
•added 2026/01/13 12:0 a.m.•17 views

Check Point Response to CVE-2025-9142 - Harmony SASE Windows Client Vulnerability

Cause The authentication and file-handling logic does not enforce strict trust boundaries. Under specific conditions, the system fails to validate data during certificate processing before using it in a privileged service component. Symptoms - A local attacker can trigger Harmony SASE Windows...

7.5CVSS5.5AI score0.00072EPSS
Exploits0
CheckPoint Security
CheckPoint Security
•added 2025/04/27 12:0 a.m.•17 views

Check Point response to CVE-2025-32728 - The SSH directive "DisableForwarding" fails to disable "X11 Forwarding" and "Agent Forwarding"

Symptoms - A flaw was found in OpenSSH - in affected versions of SSHD, the directive "DisableForwarding" does not fully adhere to the intended functionality as documented. Specifically, it fails to disable X11 and Agent forwarding, which may allow unintended access under certain configurations...

4.3CVSS6.7AI score0.0016EPSS
Exploits0
CheckPoint Security
CheckPoint Security
•added 2025/01/29 12:0 a.m.•17 views

CVE-2024-52887 - Self-XSS vulnerability in Mobile Access Native Applications 'favorites' dialog

Symptoms - The Mobile Access portal is vulnerable to a stored, self-XSS attack. An authenticated end-user may set a specially crafted SNX bookmark that can make their browser run a script while accessing their own bookmark list. So far today, no attack with actual impact is known. - This issue...

5.4CVSS6.8AI score0.00179EPSS
Exploits0
CheckPoint Security
CheckPoint Security
•added 2024/05/26 12:0 a.m.•17 views

Preventative Hotfix for CVE-2024-24919 - Quantum Gateway Information Disclosure

Solution This article refers to Quantum Security Gateways running Gaia OS and CloudGuard Network Security. For Quantum Spark Gateways that run a Gaia Embedded OS, see sk182357. Following our security update on May 27, 2024, Check Point's dedicated task force continues investigating attempts to ga...

8.6CVSS6.4AI score0.99978EPSS
Exploits52
CheckPoint Security
CheckPoint Security
•added 2024/03/26 12:0 a.m.•17 views

Check Point Response to Docker Desktop Vulnerabilities

Solution This article provides Check Point response to Docker Desktop vulnerabilities that various vulnerability scanners may show when testing a Check Point Security Gateway / Management Server / Log Server. To exploit a Docker Desktop vulnerability, a malicious actor must have a local access on...

10CVSS6.8AI score0.18087EPSS
Exploits20
CheckPoint Security
CheckPoint Security
•added 2019/01/14 7:55 a.m.•17 views

Check Point CloudGuard Controller fails to connect to a VMware vCenter Data Center in R80.20.M2

...

2.7AI score
Exploits0Affected Software1
CheckPoint Security
CheckPoint Security
•added 2014/04/26 9:0 p.m.•17 views

Important security and stability enhancements for Security Gateway

...

1.9AI score
Exploits0Affected Software7
CheckPoint Security
CheckPoint Security
•added 2023/07/25 12:0 a.m.•16 views

Check Point Response to CVE-2023-28130 - Hostname command injection in Gaia Portal

Symptoms - Local user may lead to privilege escalation using Gaia Portal "Hosts and DNS" page. This issue received the ID CVE-2023-28130. Solution This problem was fixed. The fix adds more validations on user input and is included starting from: Check Point R82 Jumbo Hotfix Accumulator for R81.20...

7.2CVSS7.2AI score0.21381EPSS
Exploits3
CheckPoint Security
CheckPoint Security
•added 2022/11/13 12:0 a.m.•16 views

VPN SNX portal may be vulnerable to brute-force attack on passwords

Cause The VPN SNX portal in the IPsec VPN Software Blade does not implement any protection against brute-force attack on usernames/passwords. Symptoms - The IPsec VPN blade has a dedicated portal for downloading and connecting through SSL Network Extender SNX. If the portal is configured for...

7.5CVSS7.2AI score0.00591EPSS
Exploits0
CheckPoint Security
CheckPoint Security
•added 2020/12/02 2:50 a.m.•16 views

Check Point Response to SNIcat

...

1.2AI score
Exploits0Affected Software1
CheckPoint Security
CheckPoint Security
•added 2020/01/23 12:51 a.m.•16 views

Predictable TCP sequences generated by Security Gateway in R80.20 / R80.30

...

1.4AI score
Exploits0Affected Software1
CheckPoint Security
CheckPoint Security
•added 2016/05/30 3:3 a.m.•16 views

Detection issue of malicious URLs in Anti-Bot / Anti-Virus after installing Take 143 of R77.30 Jumbo Hotfix Accumulator

...

1.7AI score
Exploits0Affected Software2
CheckPoint Security
CheckPoint Security
•added 2014/12/08 10:0 p.m.•16 views

Check Point response to TLS 1.x padding vulnerability

...

1.8AI score
Exploits0Affected Software7
CheckPoint Security
CheckPoint Security
•added 2013/11/04 10:0 p.m.•16 views

E-mails might not be scanned by the Threat Emulation blade in some specific scenarios depending on the e-mail client behavior

...

1.4AI score
Exploits0Affected Software1
CheckPoint Security
CheckPoint Security
•added 2006/12/02 10:0 p.m.•16 views

Connectra PHP Vulnerability

...

1.8AI score
Exploits0Affected Software2
CheckPoint Security
CheckPoint Security
•added 2006/11/26 10:0 p.m.•16 views

OpenSSH vulnerability - Privilege Separation Monitor Weakness

...

2.9AI score
Exploits0Affected Software7
CheckPoint Security
CheckPoint Security
•added 2024/10/08 12:0 a.m.•15 views

Check Point Response to CVE-2024-24914 - TCL substitution of global parameter values

Symptoms - After logging in to Gaia Portal, authenticated users local Gaia users and RADIUS / TACACS users may cause code injection in Gaia Portal because of unprotected global variables usage when processing the HTTP request in the TCL process. This issue received the ID CVE-2024-24914. Solution...

8CVSS7.4AI score0.00396EPSS
Exploits0
CheckPoint Security
CheckPoint Security
•added 2019/09/01 1:49 a.m.•15 views

In a rare scenario, R80.30 Security Gateway managed by R80.30 Security Management crashes when Threat Prevention Forensics feature is enabled

...

1.2AI score
Exploits0Affected Software5
CheckPoint Security
CheckPoint Security
•added 2018/08/15 12:0 a.m.•15 views

Rare failure in the Identity Sharing network registration may potentially result in incorrect policy actions

Cause The connection is handled by the PEP Gateway, but no identity is found on the PEP for the connectionÂ’s IPs. With smart pull Identity sharing, the PEP Gateway will hold the connection if: 1. The Access Role is used in the policy and required for the final rulebase match. 2. There is a remote...

7.8CVSS6.6AI score0.7354EPSS
Exploits0
CheckPoint Security
CheckPoint Security
•added 2018/08/02 3:28 a.m.•15 views

Using Domain Objects in the rulebase might cause wrong policy actions in R80.10 JHF Take_91-103

...

1.7AI score
Exploits0Affected Software1
CheckPoint Security
CheckPoint Security
•added 2017/01/20 1:48 a.m.•15 views

R77.30, R77.20 Security hotfix for DLP and Threat Extraction blades

...

1.4AI score
Exploits0Affected Software2
CheckPoint Security
CheckPoint Security
•added 2016/02/10 3:7 a.m.•15 views

Check Point response to ZoneAlarm DLL injection

...

1.7AI score
Exploits0Affected Software1
CheckPoint Security
CheckPoint Security
•added 2013/12/18 10:0 p.m.•15 views

Endpoint Security MI Server R73 certificate validation

...

2.1AI score
Exploits0Affected Software1
CheckPoint Security
CheckPoint Security
•added 2010/12/13 10:0 p.m.•15 views

Check Point's Response to Stonesoft's "Advanced Evasion Techniques" (CVE-2010-0102)

...

1.4AI score
Exploits0Affected Software1
CheckPoint Security
CheckPoint Security
•added 2010/04/12 9:0 p.m.•15 views

Check Point response to "Jedi Packet Trick" (CVE-2010-0104)

...

10CVSS1.7AI score0.0651EPSS
Exploits0Affected Software5
CheckPoint Security
CheckPoint Security
•added 2025/06/08 12:0 a.m.•14 views

CVE-2024-24915 - Potential vulnerability in SmartConsole where an administrator's credentials may be exposed to users with debugging privileges on the administrator's computer

Symptoms - Credentials are not cleared from memory after being used. A user with Administrator permissions can execute a memory dump for the SmartConsole process and fetch them. - This issue received the ID CVE-2024-24915. Solution This problem was fixed. The fix is included starting from: R82...

7.2CVSS7AI score0.00175EPSS
Exploits0
CheckPoint Security
CheckPoint Security
•added 2025/01/21 12:0 a.m.•14 views

CVE-2024-52888 - Mobile Access File Share applications are vulnerable to stored XSS attacks

Symptoms - When an authenticated Mobile Access portal end-user browses to a File Share application, the portal may run a script while attempting to display a directory or some file's properties. Additionally, an authenticated attacker may store specially crafted file/dir names for other...

5.4CVSS6.8AI score0.00182EPSS
Exploits0
CheckPoint Security
CheckPoint Security
•added 2024/07/18 12:0 a.m.•14 views

Check Point Response to CVE-2024-3596 - Blast-RADIUS attack

Cause The Blast-RADIUS attack allows a man-in-the-middle attacker between the RADIUS client and server to forge a valid protocol accept message in response to a failed authentication request. This forgery could give the attacker access to network devices and services without the attacker guessing...

9CVSS7.4AI score0.14859EPSS
Exploits2
CheckPoint Security
CheckPoint Security
•added 2024/04/25 12:0 a.m.•14 views

Check Point Response to CVE-2024-24912 - local privilege escalation in Harmony Endpoint Security Client for Windows via crafted DLL file

Symptoms - A local privilege escalation vulnerability has been identified in Harmony Endpoint Security Client for Windows versions E88.10 and lower. By manipulating the COM object, an attacker could load a specially crafted DLL. An attacker must first obtain the ability to execute local privilege...

6.7CVSS7.3AI score0.0016EPSS
Exploits0
CheckPoint Security
CheckPoint Security
•added 2021/04/22 12:0 a.m.•14 views

Check Point Response to CVE-2021-30356 - denial-of-service vulnerability in Identity Agent

Cause A denial-of-service vulnerability was reported in Check Point Identity Agent before R81.018.0000, which could allow low privileged users to overwrite protected system files. This issue was published as CVE-2021-30356. The write-up for the vulnerability is available at:...

8.1CVSS6.7AI score0.00995EPSS
Exploits0
CheckPoint Security
CheckPoint Security
•added 2020/05/16 8:53 p.m.•14 views

Few Remote Access clients that do not support Multi-Factor Authentication (MFA) are able to connect to a Security Gateway even though "Allow older clients" is disabled

...

3.7AI score
Exploits0Affected Software2
CheckPoint Security
CheckPoint Security
•added 2019/01/06 3:11 a.m.•14 views

RADIUS/TACACS+ users fail to change the default admin password when running the First Time Wizard

...

2.6AI score
Exploits0Affected Software2
CheckPoint Security
CheckPoint Security
•added 2014/07/09 9:0 p.m.•14 views

HTTPS Inspection update for attending India CCA unauthorized digital certificates

...

1.6AI score
Exploits0Affected Software1
CheckPoint Security
CheckPoint Security
•added 2014/03/08 10:0 p.m.•14 views

Some protections may not work for specific HTTP evasions in R77.10 / R77 / R76

...

0.6AI score
Exploits0Affected Software6
CheckPoint Security
CheckPoint Security
•added 2014/02/18 10:0 p.m.•14 views

Check Point offers important security update for Endpoint Security Management Server

...

3.2AI score
Exploits0Affected Software1
CheckPoint Security
CheckPoint Security
•added 2014/02/09 10:0 p.m.•14 views

Check Point response to "Check Point Connection Table Leakage"

...

1.3AI score
Exploits0Affected Software2
CheckPoint Security
CheckPoint Security
•added 2013/10/27 10:0 p.m.•14 views

Security Gateway Virtual Edition (VE) VMWare OVF template security update

...

2.2AI score
Exploits0Affected Software1
CheckPoint Security
CheckPoint Security
•added 2009/11/18 10:0 p.m.•14 views

Check Point response to VU#261869

...

1.5AI score
Exploits0Affected Software1
CheckPoint Security
CheckPoint Security
•added 2007/10/01 10:0 p.m.•14 views

SecurePlatform Local Privilege Escalation Report

...

1.8AI score
Exploits0Affected Software3
CheckPoint Security
CheckPoint Security
•added 2025/02/02 12:0 a.m.•13 views

Check Point Response to CVE-2024-24911 - Out of Bounds read in the CPCA process on a Check Point Management Server

Cause An Out-of-Bounds read may occur when processing certain HTTP "POST" requests to the Security Management Server / Domain Management Server to the TCP port 18264. Repeated requests can cause a denial-of-service DoS of the cpca process and may lead it to exit unexpectedly with a core dump file...

7.5CVSS6.8AI score0.0037EPSS
Exploits0
CheckPoint Security
CheckPoint Security
•added 2023/07/19 12:0 a.m.•13 views

Check Point Response to CVE-2023-28133 - Local privilege escalation in Check Point Endpoint Security Client via crafted OpenSSL configuration file

Symptoms - Local privilege escalation in Check Point Endpoint Security Client. Affected versions: E87.30 and lower, including all E86.x clients. Affected clients: Standalone Remote Access VPN clients, Endpoint Security Clients with Remote Access VPN enabled. Affected processes: TracSrvWrapper.exe...

7.8CVSS7.4AI score0.05701EPSS
Exploits0
CheckPoint Security
CheckPoint Security
•added 2019/06/26 8:53 p.m.•13 views

Authenticating to SMB appliances using only the first 8 characters of the Administrator password is allowed

...

4.9AI score
Exploits0Affected Software1
CheckPoint Security
CheckPoint Security
•added 2019/01/29 2:21 a.m.•13 views

Machine is vulnerable to attacks after CPUSE clean install and before completing the First Time Wizard

...

3.6AI score
Exploits0Affected Software2
CheckPoint Security
CheckPoint Security
•added 2016/04/12 12:15 a.m.•13 views

Check Point Response to BadLock vulnerabilities

...

1.9AI score
Exploits0
CheckPoint Security
CheckPoint Security
•added 2014/03/12 10:0 p.m.•13 views

Check Point response to "Bypassing Application Control"

...

2.2AI score
Exploits0Affected Software1
CheckPoint Security
CheckPoint Security
•added 2014/01/27 10:0 p.m.•13 views

Security enhancements for 600 / 1100 / Security Gateway 80 Appliances

...

2.6AI score
Exploits0Affected Software2
CheckPoint Security
CheckPoint Security
•added 2013/10/02 9:0 p.m.•13 views

When using Threat Emulation to scan mail content, some files encoded in MIME may be incorrectly decoded causing a 'False-Negative' result of the emulated file

...

1.7AI score
Exploits0Affected Software1
CheckPoint Security
CheckPoint Security
•added 2012/07/09 9:0 p.m.•13 views

Check Point response to "Check Point GO Vulnerabilities report"

...

1.7AI score
Exploits0Affected Software1
CheckPoint Security
CheckPoint Security
•added 2011/06/13 9:0 p.m.•13 views

Check Point's Response to "FireWall-1 RDP Bypass Vulnerability" (CA-2001-17)

...

1.4AI score
Exploits0Affected Software1
Total number of security vulnerabilities203