Security Gateway Security Vulnerabilities and Issues — Security Gateway CVE List

Lucene search

CheckpointSecurity Gateway

8 matches found

CVE•added 2014/09/24 6:48 p.m.•2728 views

CVE-2014-6271

GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cg...

10CVSS9.9AI score0.9422EPSS

CVE•added 2014/09/25 1:55 a.m.•1237 views

CVE-2014-7169

GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have unknown other impact via a crafted environment, as demonstrated by vectors involving the F...

10CVSS8.4AI score0.9422EPSS

CVE•added 2019/10/02 5:15 p.m.•52 views

CVE-2019-8462

In a rare scenario, Check Point R80.30 Security Gateway before JHF Take 50 managed by Check Point R80.30 Management crashes with a unique configuration of enhanced logging.

7.5CVSS7.5AI score0.00408EPSS

CVE•added 2014/04/01 6:35 a.m.•38 views

CVE-2013-7350

Multiple unspecified vulnerabilities in Check Point Security Gateway 80 R71.x before R71.45 (730159141) and R75.20.x before R75.20.4 and 600 and 1100 appliances R75.20.x before R75.20.42 have unknown impact and attack vectors related to "important security fixes."

10CVSS6.9AI score0.00322EPSS

CVE•added 2014/11/16 5:59 p.m.•37 views

CVE-2014-8951

Unspecified vulnerability in Check Point Security Gateway R75, R76, R77, and R77.10, when UserCheck is enabled and the (1) Application Control, (2) URL Filtering, (3) DLP, (4) Threat Emulation, (5) Anti-Bot, or (6) Anti-Virus blade is used, allows remote attackers to cause a denial of service (fwk0...

7.1CVSS6.9AI score0.00833EPSS

CVE•added 2014/11/16 5:59 p.m.•36 views

CVE-2014-8952

Multiple unspecified vulnerabilities in Check Point Security Gateway R75.40VS, R75.45, R75.46, R75.47, R76, R77, and R77.10, when the (1) IPS blade, (2) IPsec Remote Access, (3) Mobile Access / SSL VPN blade, (4) SSL Network Extender, (5) Identify Awareness blade, (6) HTTPS Inspection, (7) UserChec...

7.1CVSS7.2AI score0.00833EPSS

CVE•added 2014/11/16 5:59 p.m.•35 views

CVE-2014-8950

Unspecified vulnerability in Check Point Security Gateway R77 and R77.10, when the (1) URL Filtering or (2) Identity Awareness blade is used, allows remote attackers to cause a denial of service (crash) via vectors involving an HTTPS request.

7.1CVSS6.8AI score0.00833EPSS

CVE•added 2014/01/26 1:55 a.m.•32 views

CVE-2014-1672

Check Point R75.47 Security Gateway and Management Server does not properly enforce Anti-Spoofing when the routing table is modified and the "Get - Interfaces with Topology" action is performed, which allows attackers to bypass intended access restrictions.

4CVSS6.8AI score0.00255EPSS