https://community.checkpoint.com/t5/General-Topics/CVE-2024-27267-java-vulnerability-of-IBM/m-p/231791#M38733 <P>This one is for IBM:</P> <DIV class="clearfix text-formatted field field--name-field-vulnerability-details field--type-text-long field--label-above"> <P class="ibm-northstart-documentation-information-data"><STRONG>CVEID: &nbsp;<SPAN>&nbsp;</SPAN></STRONG><A href="https://exchange.xforce.ibmcloud.com/vulnerabilities/284573" rel="nofollow" target="_blank">CVE-2024-27267</A><BR /><STRONG>DESCRIPTION: &nbsp;<SPAN>&nbsp;</SPAN></STRONG>The Object Request Broker (ORB) in IBM SDK, Java Technology Edition is vulnerable to remote denial of service, caused by a race condition in the management of ORB listener threads.<BR />CVSS Base score: 5.9<BR />CVSS Temporal Score: See:<SPAN>&nbsp;</SPAN><A href="https://exchange.xforce.ibmcloud.com/vulnerabilities/284573" rel="nofollow" target="_blank">https://exchange.xforce.ibmcloud.com/vulnerabilities/284573</A><SPAN>&nbsp;</SPAN>for the current score.<BR />CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H)</P> </DIV> <DIV class="clearfix text-formatted field field--name-field-affected-products field--type-text-long field--label-above"> <H2 class="ibm-h4 ibm-bold ibm-northstart-documentation-information-label">Affected Products and Versions</H2> <DIV> <TABLE border="1"> <TBODY> <TR> <TD>Affected Product(s)</TD> <TD>Version(s)</TD> </TR> <TR> <TD>IBM SDK, Java Technology Edition</TD> <TD>7.1.0.0 - 7.1.5.18 (restricted access)</TD> </TR> <TR> <TD>IBM SDK, Java Technology Edition</TD> <TD>8.0.0.0 - 8.0.8.26</TD> </TR> </TBODY> </TABLE> </DIV> <P><BR />For detailed information on which CVEs affect which releases, please refer to the&nbsp;<A href="https://www.ibm.com/support/pages/java-sdk-security-vulnerabilities" rel="nofollow" target="_blank">IBM SDK, Java Technology Edition Security Vulnerabilities page</A>.<BR /><BR /><BR /></P> </DIV> Tue, 05 Nov 2024 21:45:22 GMT Lesley 2024-11-05T21:45:22Z https://community.checkpoint.com/t5/General-Topics/CVE-2024-27267-java-vulnerability-of-IBM/m-p/231602#M38692 <P>Dear Checkmates,</P><P>Please let me know if Check Point is affected by this vulnerability, if not kindly leave a link to the article that discusses about this CVE.</P><P>=======</P><P>Thanks &amp; Regards,</P><P>FirewallHead</P> Mon, 04 Nov 2024 05:34:06 GMT https://community.checkpoint.com/t5/General-Topics/CVE-2024-27267-java-vulnerability-of-IBM/m-p/231602#M38692 Firewall_Head 2024-11-04T05:34:06Z https://community.checkpoint.com/t5/General-Topics/CVE-2024-27267-java-vulnerability-of-IBM/m-p/231663#M38715 <P>I would engage with the TAC here: <A href="https://help.checkpoint.com" target="_blank">https://help.checkpoint.com</A>&nbsp;</P> Mon, 04 Nov 2024 18:14:55 GMT https://community.checkpoint.com/t5/General-Topics/CVE-2024-27267-java-vulnerability-of-IBM/m-p/231663#M38715 PhoneBoy 2024-11-04T18:14:55Z https://community.checkpoint.com/t5/General-Topics/CVE-2024-27267-java-vulnerability-of-IBM/m-p/231791#M38733 <P>This one is for IBM:</P> <DIV class="clearfix text-formatted field field--name-field-vulnerability-details field--type-text-long field--label-above"> <P class="ibm-northstart-documentation-information-data"><STRONG>CVEID: &nbsp;<SPAN>&nbsp;</SPAN></STRONG><A href="https://exchange.xforce.ibmcloud.com/vulnerabilities/284573" rel="nofollow" target="_blank">CVE-2024-27267</A><BR /><STRONG>DESCRIPTION: &nbsp;<SPAN>&nbsp;</SPAN></STRONG>The Object Request Broker (ORB) in IBM SDK, Java Technology Edition is vulnerable to remote denial of service, caused by a race condition in the management of ORB listener threads.<BR />CVSS Base score: 5.9<BR />CVSS Temporal Score: See:<SPAN>&nbsp;</SPAN><A href="https://exchange.xforce.ibmcloud.com/vulnerabilities/284573" rel="nofollow" target="_blank">https://exchange.xforce.ibmcloud.com/vulnerabilities/284573</A><SPAN>&nbsp;</SPAN>for the current score.<BR />CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H)</P> </DIV> <DIV class="clearfix text-formatted field field--name-field-affected-products field--type-text-long field--label-above"> <H2 class="ibm-h4 ibm-bold ibm-northstart-documentation-information-label">Affected Products and Versions</H2> <DIV> <TABLE border="1"> <TBODY> <TR> <TD>Affected Product(s)</TD> <TD>Version(s)</TD> </TR> <TR> <TD>IBM SDK, Java Technology Edition</TD> <TD>7.1.0.0 - 7.1.5.18 (restricted access)</TD> </TR> <TR> <TD>IBM SDK, Java Technology Edition</TD> <TD>8.0.0.0 - 8.0.8.26</TD> </TR> </TBODY> </TABLE> </DIV> <P><BR />For detailed information on which CVEs affect which releases, please refer to the&nbsp;<A href="https://www.ibm.com/support/pages/java-sdk-security-vulnerabilities" rel="nofollow" target="_blank">IBM SDK, Java Technology Edition Security Vulnerabilities page</A>.<BR /><BR /><BR /></P> </DIV> Tue, 05 Nov 2024 21:45:22 GMT https://community.checkpoint.com/t5/General-Topics/CVE-2024-27267-java-vulnerability-of-IBM/m-p/231791#M38733 Lesley 2024-11-05T21:45:22Z https://community.checkpoint.com/t5/General-Topics/CVE-2024-27267-java-vulnerability-of-IBM/m-p/231832#M38738 <P># java -version<BR />java version "1.8.0_401"<BR />Java(TM) SE Runtime Environment (build 8.0.8.21 - pxi3280sr8fp21-20240221_01(SR8 FP21))<BR />IBM J9 VM (build 2.9, JRE 1.8.0 Linux x86-32-Bit 20240216_65882 (JIT enabled, AO T enabled)<BR />OpenJ9 - 6a2a245<BR />OMR - 9440e34<BR />IBM - 7394519)<BR />JCL - 20231221_01 based on Oracle jdk8u401-b10</P> Wed, 06 Nov 2024 09:10:53 GMT https://community.checkpoint.com/t5/General-Topics/CVE-2024-27267-java-vulnerability-of-IBM/m-p/231832#M38738 G_W_Albrecht 2024-11-06T09:10:53Z https://community.checkpoint.com/t5/General-Topics/CVE-2024-27267-java-vulnerability-of-IBM/m-p/231872#M38747 <P>In general, the ability to exploit the vulnerabilities here are low since:</P> <UL> <LI>Gateways don't actually use java (though the binaries are there)</LI> <LI>On Management, the relevant Java processes are reversed proxied through Apache, which limits the external&nbsp;<SPAN>traffic that can reach the inner processes and thus exploit the relevant CVE.</SPAN></LI> </UL> <P>It appears that we are planning to release fixes in upcoming JHFs, in any case.<BR />TAC should be consulted for further details: <A href="https://help.checkpoint.com" target="_blank">https://help.checkpoint.com</A>&nbsp;</P> Wed, 06 Nov 2024 15:14:47 GMT https://community.checkpoint.com/t5/General-Topics/CVE-2024-27267-java-vulnerability-of-IBM/m-p/231872#M38747 PhoneBoy 2024-11-06T15:14:47Z