https://community.checkpoint.com/t5/Firewall-and-Security-Management/OpenSSH-vulnerable-in-Check-Point-R80-20/m-p/107332#M77185 <P>What was the precise issue found?<BR />If it is the one in that SK, yes, we patched that issue in our version of OpenSSH.<BR />Some issues do require a newer version of OpenSSH which requires upgrading.</P> Sat, 09 Jan 2021 00:39:46 GMT PhoneBoy 2021-01-09T00:39:46Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/OpenSSH-vulnerable-in-Check-Point-R80-20/m-p/107241#M77184 <P>Recently we had a pentration test on our Azure data centre. And they hignlighted an issue with OpenSSH within Check Point R80.20. Is it possible to upgrade OpenSSH within Check Point R80.20 or do we need to upgrade Check point to R80.40 to get around this issue?</P><P>I found the following post regarding relevant fixes made to Check Point OpenSSH package. Is this still relevant now Check Point R80.20?</P><P><A href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk61744" target="_blank">https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk61744</A></P> Thu, 07 Jan 2021 17:28:25 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/OpenSSH-vulnerable-in-Check-Point-R80-20/m-p/107241#M77184 dnpl 2021-01-07T17:28:25Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/OpenSSH-vulnerable-in-Check-Point-R80-20/m-p/107332#M77185 <P>What was the precise issue found?<BR />If it is the one in that SK, yes, we patched that issue in our version of OpenSSH.<BR />Some issues do require a newer version of OpenSSH which requires upgrading.</P> Sat, 09 Jan 2021 00:39:46 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/OpenSSH-vulnerable-in-Check-Point-R80-20/m-p/107332#M77185 PhoneBoy 2021-01-09T00:39:46Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/OpenSSH-vulnerable-in-Check-Point-R80-20/m-p/107469#M77186 <P>So this is the message we recieved :-</P><P>We have observed that the SSH service (port TCP/22), exposed in the environment was identified as the outdated OpenSSH version 4.3 released in 2006, and that is found to be affected by at least 17 security issues2.</P><P>Although we found that the vendor, Check Point, has backported patches for OpenSSH 4.3 that mitigates CVE-2006-5051 and CVE-2006-49243 in Check Point R80.20, we were not able to identify that issues discovered in later versions of said software4, has also been backported for the version in question.</P> Mon, 11 Jan 2021 12:08:05 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/OpenSSH-vulnerable-in-Check-Point-R80-20/m-p/107469#M77186 dnpl 2021-01-11T12:08:05Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/OpenSSH-vulnerable-in-Check-Point-R80-20/m-p/107550#M77187 <P>Most likely, we've patched them or determined they are not relevant because of how we've compiled or deployed OpenSSH.<BR />If you can get a precise list of CVEs, this can probably be confirmed by searching SecureKnowledge.</P> Tue, 12 Jan 2021 01:27:09 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/OpenSSH-vulnerable-in-Check-Point-R80-20/m-p/107550#M77187 PhoneBoy 2021-01-12T01:27:09Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/OpenSSH-vulnerable-in-Check-Point-R80-20/m-p/107752#M77188 <P>Here is a list of CVE's identified as security issues :--</P><P>CVE-2017-15906<BR />CVE-2016-10708<BR />CVE-2014-1692<BR />CVE-2012-0814<BR />CVE-2011-5000<BR />CVE-2011-4327<BR />CVE-2010-5107<BR />CVE-2010-4755<BR />CVE-2010-4478<BR />CVE-2009-2904<BR />CVE-2008-4109<BR />CVE-2008-3259<BR />CVE-2007-4752<BR />CVE-2007-2243<BR />CVE-2006-5052<BR />CVE-2006-5051<BR />CVE-2006-4924<BR /><BR />The following link contains more information on each security&nbsp;<A href="https://www.cvedetails.com/vulnerability-list/vendor_id-97/product_id-585/version_id-37157/Openbsd-Openssh-4.3.html" target="_blank">https://www.cvedetails.com/vulnerability-list/vendor_id-97/product_id-585/version_id-37157/Openbsd-Openssh-4.3.html</A>&nbsp;</P> Wed, 13 Jan 2021 17:58:24 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/OpenSSH-vulnerable-in-Check-Point-R80-20/m-p/107752#M77188 dnpl 2021-01-13T17:58:24Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/OpenSSH-vulnerable-in-Check-Point-R80-20/m-p/107759#M77189 <P>I’m guessing most of these CVEs are listed here:&nbsp;<A href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk65269&amp;partition=Basic&amp;product=All" target="_blank">https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk65269&amp;partition=Basic&amp;product=All</A></P> <P>For any that aren’t, I recommend a TAC case to get a formal answer.</P> Wed, 13 Jan 2021 20:05:57 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/OpenSSH-vulnerable-in-Check-Point-R80-20/m-p/107759#M77189 PhoneBoy 2021-01-13T20:05:57Z