topic Re: High Risk Applications in Firewall and Security Management

High Risk Applications

Olga_Botero — Thu, 01 Nov 2018 11:07:44 GMT

Can someone explain why Checkpoint flags an application as High Risk?

For example, Dashlane is a password manager with the highest rating found in PC Magazine and other Password Manager ratings give it a 9.9. Back in February 2017, they discover flaws in the password managers but these were fixed by the vendors. Could it be that the rating is due to these findings almost 2 years ago? (9 Popular Password Manager Apps Found Leaking Your Secrets )

Re: High Risk Applications

_Val_ — Thu, 01 Nov 2018 12:48:21 GMT

You can always submit a re-classification request, if you see a need.

Re: High Risk Applications

Aidan_Luby1 — Thu, 01 Nov 2018 12:50:40 GMT

I think high risk could also imply the type of application that while used and supported by high staff is not high risk but could be high risk when used without the IT Departments permission.

Re: High Risk Applications

Olga_Botero — Thu, 01 Nov 2018 13:11:25 GMT

Thank you for your comments. I am trying another password manager BLUR and never got any high-risk messages.

I attribute that to the fact that Blur has never been hacked therefore there are no statistics on security issues with the app. Adam, your comment is very helpful and I am going to explain that to the manager, also Valery, you are right, I can submit a reclass for the product if we decide to use it.

Re: High Risk Applications

ED — Fri, 02 Nov 2018 12:28:14 GMT

Hi Olga,

You can check the risk level and category on this CP site: https://appwiki.checkpoint.com/appwikisdb/public.htm

Dashlane is under category browser plugin, making it extra vulnerable. Just like LastPass. Both with risk high (4). So it looks like all password managers that works as a browser plugin is marked as high risk. BLUR is not on the list of Check Point AppWiki.

For IPS protections, to get the severity of high this is required:

Vulnerability may lead to non-privileged remote code execution
Vulnerability may affect important company assets
Vulnerability can be easily exploited
The vulnerable software is significantly deployed in corporate environments

Re: High Risk Applications

PhoneBoy — Fri, 02 Nov 2018 15:33:30 GMT

Password Managers are in general considered a high-risk application for the following reason: They can be used to store organizational credentials in a repository not controlled by the organization.

If your organizations trusts a particular one, then explicitly allow it in the App Control policy.

It is currently not possible to reclassify the risk of a given application.

Re: High Risk Applications

Ofer137459 — Mon, 29 Dec 2025 08:46:30 GMT

I received a warning on my mobile Zone Alarm app about a malicious app called iRISCO. It is an official app for controlling the alarm system and only has permission for notifications. I recommend removing it from the list of apps defined as malicious because in my research I did not find any visible risk in it.

Re: High Risk Applications

_Val_ — Mon, 29 Dec 2025 08:58:40 GMT

If you believe it should be re-classified, you can open a TAC case and request it. Alternatively, you can whitelist it, at your own risk.

Re: High Risk Applications

_Val_ — Mon, 29 Dec 2025 09:01:55 GMT

Also, please note that the original post has nothing to do with ZoneAlarm. I would recommend that you reach out to ZoneAlarm support to handle your case

Re: High Risk Applications

PhoneBoy — Mon, 29 Dec 2025 17:50:46 GMT

We maintain a separate forum for ZoneAlarm products: https://support.zonealarm.com/hc/en-us/community/topics