CVE-2014-8951

3 documents3 sources

Severity

7.1HIGH

EPSS

0.8%

top 25.42%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Checkpoint Security Gateway

Timeline

PublishedNov 16

Latest updateMay 17

Description

Unspecified vulnerability in Check Point Security Gateway R75, R76, R77, and R77.10, when UserCheck is enabled and the (1) Application Control, (2) URL Filtering, (3) DLP, (4) Threat Emulation, (5) Anti-Bot, or (6) Anti-Virus blade is used, allows remote attackers to cause a denial of service (fwk0 process crash, core dump, and restart) via a redirect to the UserCheck page.

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages1 packages

▶NVDcheckpoint/security_gateway4 versions+3

🔴Vulnerability Details

GHSA

GHSA-hx29-wxvv-j27h: Unspecified vulnerability in Check Point Security Gateway R75, R76, R77, and R77↗2022-05-17

▶

CVEList

CVE-2014-8951: Unspecified vulnerability in Check Point Security Gateway R75, R76, R77, and R77↗2014-11-16

▶