https://community.checkpoint.com/t5/WAF/Cloudguard-WAF-Appsec-Gateway-CVE-2024-6387/m-p/240895#M291 <P>Hi&nbsp;<a href="https://community.checkpoint.com/t5/user/viewprofilepage/user-id/64891">@Napoji</a>,</P> <P>As of March, 2024 our CloudGuard WAF image for VMWare includes R81.20 as the running OS.</P> <P>Looking at&nbsp;<A href="https://support.checkpoint.com/results/sk/sk182459" target="_blank">sk182459 - Check Point Response to CVE-2024-6387 - OpenSSH Library RCE</A>,&nbsp;you can see that this OS version is not vulnerable to this CVE.</P> Tue, 11 Feb 2025 12:33:37 GMT yuvalmamka 2025-02-11T12:33:37Z https://community.checkpoint.com/t5/WAF/Cloudguard-WAF-Appsec-Gateway-CVE-2024-6387/m-p/240840#M288 <P>Dear All,</P><P>Currently the Appsec Gateway for VMware run OpenSSH version 7.8 and customer asked will it be updated to atleast version 9.7p1.</P><P>What are the plans for that if any?</P><P>Thank you in advance.</P><P>Best Regards,</P><P>Erik Molnar</P> Mon, 10 Feb 2025 16:42:41 GMT https://community.checkpoint.com/t5/WAF/Cloudguard-WAF-Appsec-Gateway-CVE-2024-6387/m-p/240840#M288 Napoji 2025-02-10T16:42:41Z https://community.checkpoint.com/t5/WAF/Cloudguard-WAF-Appsec-Gateway-CVE-2024-6387/m-p/240870#M289 <P>Presume it will be updated shortly.<BR />Best to follow up with TAC.</P> Mon, 10 Feb 2025 20:04:21 GMT https://community.checkpoint.com/t5/WAF/Cloudguard-WAF-Appsec-Gateway-CVE-2024-6387/m-p/240870#M289 PhoneBoy 2025-02-10T20:04:21Z https://community.checkpoint.com/t5/WAF/Cloudguard-WAF-Appsec-Gateway-CVE-2024-6387/m-p/240890#M290 <P>Hi&nbsp;<a href="https://community.checkpoint.com/t5/user/viewprofilepage/user-id/64891">@Napoji</a>,</P> <P>Let me check this with R&amp;D and I'll get back here with an official statement soon.</P> Tue, 11 Feb 2025 09:15:00 GMT https://community.checkpoint.com/t5/WAF/Cloudguard-WAF-Appsec-Gateway-CVE-2024-6387/m-p/240890#M290 yuvalmamka 2025-02-11T09:15:00Z https://community.checkpoint.com/t5/WAF/Cloudguard-WAF-Appsec-Gateway-CVE-2024-6387/m-p/240895#M291 <P>Hi&nbsp;<a href="https://community.checkpoint.com/t5/user/viewprofilepage/user-id/64891">@Napoji</a>,</P> <P>As of March, 2024 our CloudGuard WAF image for VMWare includes R81.20 as the running OS.</P> <P>Looking at&nbsp;<A href="https://support.checkpoint.com/results/sk/sk182459" target="_blank">sk182459 - Check Point Response to CVE-2024-6387 - OpenSSH Library RCE</A>,&nbsp;you can see that this OS version is not vulnerable to this CVE.</P> Tue, 11 Feb 2025 12:33:37 GMT https://community.checkpoint.com/t5/WAF/Cloudguard-WAF-Appsec-Gateway-CVE-2024-6387/m-p/240895#M291 yuvalmamka 2025-02-11T12:33:37Z https://community.checkpoint.com/t5/WAF/Cloudguard-WAF-Appsec-Gateway-CVE-2024-6387/m-p/241425#M292 <P>Thanks&nbsp;<a href="https://community.checkpoint.com/t5/user/viewprofilepage/user-id/80409">@yuvalmamka</a>&nbsp;and&nbsp;<a href="https://community.checkpoint.com/t5/user/viewprofilepage/user-id/7">@PhoneBoy</a>&nbsp;as well for the follow-up!</P> Mon, 17 Feb 2025 19:42:48 GMT https://community.checkpoint.com/t5/WAF/Cloudguard-WAF-Appsec-Gateway-CVE-2024-6387/m-p/241425#M292 Napoji 2025-02-17T19:42:48Z