CVE-2014-1672

Check Point R75.47 Security Gateway and Management Server does not properly enforce Anti-Spoofing when the routing table is modified and the "Get - Interfaces with Topology" action is performed, which allows attackers to bypass intended access restrictions.

Published: Jan 26, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-1672
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:H/Au:N/C:P/I:P/A:N

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
checkpoint / management_server	r75.47	r75.47.x
checkpoint / security_gateway	r75.47	r75.47.x

https://exchange.xforce.ibmcloud.com/vulnerabilities/90976
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk98087

Vulnerability Database

289,784

CVE-2014-1672