https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/146417#M55558 <P>Hi PhoneBoy,</P> <P>Do you have any idea about this? How Checkpoint can protect this vulnerability. Still there is no IPS signature.</P> Mon, 18 Apr 2022 16:59:12 GMT Gaurav_Pandya 2022-04-18T16:59:12Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/146267#M55553 <P>Hi,</P> <P>What is Checkpoint response for CVE-2021-31805?&nbsp; This is an RCE for Apache Struts 2.</P> <P>&nbsp;</P> <P>Apache</P> <P><A href="https://secure-web.cisco.com/1w-kfwo_IgI80AIETSMVlc6RzwfiU0fLPCzA6fzOsURhnWGgP4K_mRyJZoimyuZvbStmOXIxZhBBvsXB8lvdeMNqF9lmcidZU9ytNrJk-0aTfxKBe00GGRev1vqHI01y9-pLQWYGCWZnhTr26tJmpNOe06avJck7Wg642QOLjZ6FxfbMYegezWVnFwTwsH0fu4WbrDyE_sxeXdIJRAeqirzUbgdpFLbC38MKJZKTlrXBPyKJO2-aYxrkvsRDikahIx1cDyGjU5ZJvdYqcGrt0hgc5OCzKJdQwVafGsvhqTP2hNctNHUVW-JapoVFlQs6f84apWyzvTa5ikfvzGNd6raN93ueuqNNCLEWfapT_U4XfAgV7QTwXwODBjihEiP_TjwKMzWeKlKLXFvMdfVRvfg/https%3A%2F%2Fcwiki.apache.org%2Fconfluence%2Fdisplay%2FWW%2FS2-062" target="_blank" rel="noopener">https://cwiki.apache.org/confluence/display/WW/S2-062</A></P> <P>&nbsp;</P> <P>Mitre</P> <P><A href="https://secure-web.cisco.com/1iuFtn4P06bpDYm-7UZ5-Ymj9Cxm65FW1jSxZORzto6HzDtl5J0rZH4DKuXte82oqraWppx9BjRmMSD88zgAFTQHBQTs_ENUx5pmQRPRi61a6hFIZCmwaClszOzPSt6YrIMndKdZ2Mmlzfhgt0UwZMqlD3E7Wa6muR3etXa9lUMwaWe-NS-bj0blw5x8wYN5nkqzyLZLx7p1pd0vF0wuYK0sK6qotICPdFVU5W1kVQiohPBrI5Z1vUNFwqTviXzX24N3h7s_jfCR20hJwTUwzFDtycEvREwKA54Jg1GAkYxol_yS29Gb7rnb5jxv8VJC4cyXLmLN2mnQrDHzH1SZ1QelOWtzXBomASX0WcBzJjxWCM_JY9_WIrRrO9gIWCbMztRv0vjDq9IlSNc2BUjnPBQ/https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3D2021-31805" target="_blank" rel="noopener">https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-31805</A></P> Thu, 14 Apr 2022 13:52:00 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/146267#M55553 Gaurav_Pandya 2022-04-14T13:52:00Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/146297#M55554 <P>In what capacity, an IPS signature?<BR />I presume we'll have one shortly if that's the case.</P> Thu, 14 Apr 2022 14:57:02 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/146297#M55554 PhoneBoy 2022-04-14T14:57:02Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/146301#M55555 <P>I dont believe its addressed yet, as there are no SK's about it or anything listed for this CVE in IPS protections.</P> <P>Andy</P> Thu, 14 Apr 2022 15:16:09 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/146301#M55555 the_rock 2022-04-14T15:16:09Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/146353#M55556 <P>Can we expect IPS signature to be released? Or any kind of protection?</P> Fri, 15 Apr 2022 17:30:03 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/146353#M55556 Gaurav_Pandya 2022-04-15T17:30:03Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/146354#M55557 <P>That, I have no clue mate. I would let one of CP employees answer that question for you.</P> <P>Andy</P> Fri, 15 Apr 2022 17:31:51 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/146354#M55557 the_rock 2022-04-15T17:31:51Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/146417#M55558 <P>Hi PhoneBoy,</P> <P>Do you have any idea about this? How Checkpoint can protect this vulnerability. Still there is no IPS signature.</P> Mon, 18 Apr 2022 16:59:12 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/146417#M55558 Gaurav_Pandya 2022-04-18T16:59:12Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/146427#M55559 <P>Just my personal suggestion...if I were you, I would either contact your local SE and see if they have any details on it and also contact TAC and maybe ask them if there is anything internal they can find. I understand they are not allowed to share internal info, but at least they can tell you if there is anything about it.</P> Mon, 18 Apr 2022 19:16:47 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/146427#M55559 the_rock 2022-04-18T19:16:47Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/146481#M55560 <P>Thanks. I will check with SE</P> Tue, 19 Apr 2022 13:19:28 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/146481#M55560 Gaurav_Pandya 2022-04-19T13:19:28Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/147810#M55561 <P>I have raised a TAC case for the same and now we have IPS signature for CVE-2021-31805</P> Wed, 04 May 2022 09:05:45 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/CVE-2021-31805/m-p/147810#M55561 Gaurav_Pandya 2022-05-04T09:05:45Z