1. CVE-Search
  2. CVE-2014-8952
ID CVE-2014-8952
Summary Multiple unspecified vulnerabilities in Check Point Security Gateway R75.40VS, R75.45, R75.46, R75.47, R76, R77, and R77.10, when the (1) IPS blade, (2) IPsec Remote Access, (3) Mobile Access / SSL VPN blade, (4) SSL Network Extender, (5) Identify Awareness blade, (6) HTTPS Inspection, (7) UserCheck, or (8) Data Leak Prevention blade module is enabled, allow remote attackers to cause a denial of service ("stability issue") via an unspecified "traffic condition."
References
Vulnerable Configurations
  • cpe:2.3:a:checkpoint:security_gateway:r75.40:vs:*:*:*:*:*:*
    cpe:2.3:a:checkpoint:security_gateway:r75.40:vs:*:*:*:*:*:*
  • cpe:2.3:a:checkpoint:security_gateway:r75.45:*:*:*:*:*:*:*
    cpe:2.3:a:checkpoint:security_gateway:r75.45:*:*:*:*:*:*:*
  • cpe:2.3:a:checkpoint:security_gateway:r75.46:*:*:*:*:*:*:*
    cpe:2.3:a:checkpoint:security_gateway:r75.46:*:*:*:*:*:*:*
  • cpe:2.3:a:checkpoint:security_gateway:r75.47:*:*:*:*:*:*:*
    cpe:2.3:a:checkpoint:security_gateway:r75.47:*:*:*:*:*:*:*
  • cpe:2.3:a:checkpoint:security_gateway:r76:*:*:*:*:*:*:*
    cpe:2.3:a:checkpoint:security_gateway:r76:*:*:*:*:*:*:*
  • cpe:2.3:a:checkpoint:security_gateway:r77:*:*:*:*:*:*:*
    cpe:2.3:a:checkpoint:security_gateway:r77:*:*:*:*:*:*:*
  • cpe:2.3:a:checkpoint:security_gateway:r77.10:*:*:*:*:*:*:*
    cpe:2.3:a:checkpoint:security_gateway:r77.10:*:*:*:*:*:*:*
CVSS
Base: 7.1 (as of 08-09-2017 - 01:29)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:N/A:C
refmap via4
bid 67993
confirm https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk100431
secunia 58487
xf security-gateway-cve20148952-dos(98762)
Last major update 08-09-2017 - 01:29
Published 16-11-2014 - 17:59
Last modified 08-09-2017 - 01:29
Back to Top