Vulnerability Details CVE-2014-1672
Check Point R75.47 Security Gateway and Management Server does not properly enforce Anti-Spoofing when the routing table is modified and the "Get - Interfaces with Topology" action is performed, which allows attackers to bypass intended access restrictions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.0%
CVSS Severity
CVSS v2 Score 4.0
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90976
- https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk98087
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90976
- https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk98087
Products affected by CVE-2014-1672
-
cpe:2.3:a:checkpoint:management_server:r75.47
-
cpe:2.3:a:checkpoint:security_gateway:r75.47