https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261533#M51259 <P>I think so, yes.</P> Fri, 31 Oct 2025 02:22:46 GMT the_rock 2025-10-31T02:22:46Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261235#M51228 <P>&nbsp;</P><P>There are VA detected on checkpoint smart console as following. Kindly advise how to fix.</P><P>&nbsp;</P><P>&nbsp;</P><P>as a trail solution i&nbsp; have installed the latest build for smartconsole and the issue is still same</P><P>&nbsp;</P><TABLE width="1440"><TBODY><TR><TD width="103">&nbsp;</TD><TD width="64"><P>Medium</P></TD><TD width="77"><P>205024</P></TD><TD width="143"><P>CVE-2024-7264</P></TD><TD width="279"><P>libcurl 7.32.0 &lt; 8.9.1 DoS (CVE-2024-7264)</P></TD><TD width="243"><P>Upgrade Curl to version 8.9.1 or later</P></TD><TD width="1100"><P><BR />&nbsp; Path&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; : C:\Program Files (x86)\CheckPoint\SmartConsole\R81.20\81.20.9700.656\libcurl.dll<BR />&nbsp; Installed version : 7.61.1.0<BR />&nbsp; Fixed version&nbsp;&nbsp;&nbsp;&nbsp; : 8.9.1</P></TD></TR></TBODY></TABLE> Wed, 29 Oct 2025 03:20:02 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261235#M51228 tavi0906 2025-10-29T03:20:02Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261236#M51229 <P><MARK class="HxTRcb">Check Point firewalls are not vulnerable to CVE-2024-7264</MARK><SPAN>&nbsp;because the vulnerability affects the libcurl library and Check Point products do not use this library.</SPAN></P> Wed, 29 Oct 2025 03:29:26 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261236#M51229 the_rock 2025-10-29T03:29:26Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261528#M51255 <P><SPAN>is this not correct ?</SPAN></P><P>&nbsp;</P><P>&nbsp;</P> Fri, 31 Oct 2025 02:17:44 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261528#M51255 tavi0906 2025-10-31T02:17:44Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261529#M51256 <P><SPAN>In Check Point environments, the main reference to libcurl is through the command-line utility curl_cli</SPAN>.&nbsp;<SPAN>&nbsp;?</SPAN></P><P><SPAN>is this not correct ?</SPAN></P> Fri, 31 Oct 2025 02:15:41 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261529#M51256 tavi0906 2025-10-31T02:15:41Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261531#M51257 <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="lib.jpg" style="width: 757px;"><img src="https://community.checkpoint.com/t5/image/serverpage/image-id/31960i7659E2072C2CF118/image-size/large?v=v2&amp;px=999" role="button" title="lib.jpg" alt="lib.jpg" /></span></P> Fri, 31 Oct 2025 02:19:29 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261531#M51257 tavi0906 2025-10-31T02:19:29Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261532#M51258 <P>Thats just smart console folder.</P> Fri, 31 Oct 2025 02:22:31 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261532#M51258 the_rock 2025-10-31T02:22:31Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261533#M51259 <P>I think so, yes.</P> Fri, 31 Oct 2025 02:22:46 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261533#M51259 the_rock 2025-10-31T02:22:46Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261534#M51260 <P>Okay. Can we say that Check Point is not vulnerable to this CVE, or has Check Point not yet released any official information regarding it?</P> Fri, 31 Oct 2025 02:29:49 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261534#M51260 tavi0906 2025-10-31T02:29:49Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261535#M51261 <P>I even had TAC case about it before and they told me exact same thing, which is that CP firewalls are not vulnerable to mentioned CVE.</P> Fri, 31 Oct 2025 02:31:42 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261535#M51261 the_rock 2025-10-31T02:31:42Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261536#M51262 <P>Oh, would you be able to share a screenshot, please?</P> Fri, 31 Oct 2025 02:37:35 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261536#M51262 tavi0906 2025-10-31T02:37:35Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261537#M51263 <P>This was few months ago, will see if I can find an email about it.</P> Fri, 31 Oct 2025 02:39:00 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261537#M51263 the_rock 2025-10-31T02:39:00Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261546#M51267 <P>Hey Andy,</P> <P>You might have missed it but OP was not reporting a libcurl vulnerability on the gateway side, it's reported as being in SmartConsole.</P> <P>-Ruan</P> <P>&nbsp;</P> Fri, 31 Oct 2025 08:18:19 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261546#M51267 Ruan_Kotze 2025-10-31T08:18:19Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261555#M51269 <P>Whilst I dislike any detection based solely on version I have asked internally about this.</P> <P>Suggest raising a specific TAC case and looping in your SE aswell.</P> Fri, 31 Oct 2025 10:01:39 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261555#M51269 Chris_Atkinson 2025-10-31T10:01:39Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261558#M51270 <P>I saw that, yes. Anyway, let Chris confirm internally, to be 100% sure.</P> Fri, 31 Oct 2025 10:09:29 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261558#M51270 the_rock 2025-10-31T10:09:29Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261622#M51278 <P>This was investigated at the time and the vulnerable flow is not in use in our implementation.</P> <P>Where required requests to upgrade the libcurl version can be made via your SE under the RFE process.</P> <P>&nbsp;</P> Sat, 01 Nov 2025 14:12:49 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261622#M51278 Chris_Atkinson 2025-11-01T14:12:49Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261624#M51279 <P>Thats more less what TAC advised as well.</P> Sat, 01 Nov 2025 16:38:49 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Vulnerability-CVE-2024-7264/m-p/261624#M51279 the_rock 2025-11-01T16:38:49Z