R80.20

CVSS 5.9 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

high complexity

checkpoint

NVD

Published: 2019-04-09

Updated: 2020-10-22

Summary

Check Point IKEv2 IPsec VPN up to R80.30, in some less common conditions, may allow an attacker with knowledge of the internal configuration and setup to successfully connect to a site-to-site VPN server.

Vulnerable Configurations

Part	Description	Count
Application	Checkpoint Checkpoint Ipsec VPN R80.10 Checkpoint Ipsec VPN R80.20	2

References

https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk149892