https://community.checkpoint.com/t5/General-Topics/OPTIONS-Method-enabled-vulnerability-detected-on-gateways-WAN-IP/m-p/236939#M39603 <P>We also had this identified as vulnerability from external pentest:</P><P>Extended HTTP Methods Allowed</P><P>By issuing an "OPTIONS" Web Request to the remote Web Server (HTTP OPTIONS Method), we have managed to identify the extended HTTP Methods supported.</P><P>We have managed to identify that the remote Web Server supports the following HTTP Methods:</P><P>Based on the response to an OPTIONS request :</P><P>- HTTP methods GET HEAD OPTIONS POST are allowed on :</P><P>/sslvpn/Login</P><P>Some of the extended HTTP methods that are configured on the remote web server can potentially pose a security risk for the web application(s), as they provide the opportunity to an attacker to modify the files stored on the web server or disclose sensitive information such as the base names and extensions used by the webserver.</P><P>Any idea why it's enabled and how we can disable?</P> Fri, 27 Dec 2024 09:32:36 GMT Antonis_Hassiot 2024-12-27T09:32:36Z https://community.checkpoint.com/t5/General-Topics/OPTIONS-Method-enabled-vulnerability-detected-on-gateways-WAN-IP/m-p/192395#M32230 <P>Anyone have any idea to close "<U>OPTIONS Method enabled</U>" VA on checkpoint firewall. Our VAPT team scans the firewall WAN IP and detected this "application supports the OPTIONS HTTP method due to web server misconfiguration."</P><P>&nbsp;</P><P>&nbsp;</P> Tue, 12 Sep 2023 11:16:31 GMT https://community.checkpoint.com/t5/General-Topics/OPTIONS-Method-enabled-vulnerability-detected-on-gateways-WAN-IP/m-p/192395#M32230 Samsur121 2023-09-12T11:16:31Z https://community.checkpoint.com/t5/General-Topics/OPTIONS-Method-enabled-vulnerability-detected-on-gateways-WAN-IP/m-p/192398#M32232 <P>Options is regarded safer as it is read only, different to post or put - and web servers today do operate on https only. So why this is a vulnerability, please give sources / references !</P> Tue, 12 Sep 2023 11:46:22 GMT https://community.checkpoint.com/t5/General-Topics/OPTIONS-Method-enabled-vulnerability-detected-on-gateways-WAN-IP/m-p/192398#M32232 G_W_Albrecht 2023-09-12T11:46:22Z https://community.checkpoint.com/t5/General-Topics/OPTIONS-Method-enabled-vulnerability-detected-on-gateways-WAN-IP/m-p/192402#M32233 <P>Encourage you to share further details via a support ticket for review.</P> <P>See also:&nbsp;<SPAN>sk69160</SPAN></P> <P>&nbsp;</P> Tue, 12 Sep 2023 12:32:29 GMT https://community.checkpoint.com/t5/General-Topics/OPTIONS-Method-enabled-vulnerability-detected-on-gateways-WAN-IP/m-p/192402#M32233 Chris_Atkinson 2023-09-12T12:32:29Z https://community.checkpoint.com/t5/General-Topics/OPTIONS-Method-enabled-vulnerability-detected-on-gateways-WAN-IP/m-p/192415#M32238 <P>See also <A href="https://support.checkpoint.com/results/sk/sk104887" target="_blank" rel="noopener"><SPAN>sk104887: <STRONG>HTTP</STRONG> traffic with non-common <STRONG>HTTP</STRONG> <STRONG>methods</STRONG> does not pass through Security Gateway configured as Proxy</SPAN></A></P> <P><A href="https://community.checkpoint.com/t5/General-Topics/HTTP-Methods-in-logs/m-p/21412#M3951" target="_blank" rel="noopener"><SPAN><STRONG>HTTP</STRONG> <STRONG>Methods</STRONG> in logs?</SPAN></A></P> <P><A href="https://community.checkpoint.com/t5/Management/Query-with-HTTP-S-methods/m-p/79820#M20446" target="_blank" rel="noopener"><SPAN>Query with <STRONG>HTTP</STRONG>(S) <STRONG>methods</STRONG></SPAN></A></P> Tue, 12 Sep 2023 13:15:33 GMT https://community.checkpoint.com/t5/General-Topics/OPTIONS-Method-enabled-vulnerability-detected-on-gateways-WAN-IP/m-p/192415#M32238 G_W_Albrecht 2023-09-12T13:15:33Z https://community.checkpoint.com/t5/General-Topics/OPTIONS-Method-enabled-vulnerability-detected-on-gateways-WAN-IP/m-p/193916#M32456 <P>Thank you all for the updates, It was false a positive.</P> Sat, 30 Sep 2023 10:43:54 GMT https://community.checkpoint.com/t5/General-Topics/OPTIONS-Method-enabled-vulnerability-detected-on-gateways-WAN-IP/m-p/193916#M32456 Samsur121 2023-09-30T10:43:54Z https://community.checkpoint.com/t5/General-Topics/OPTIONS-Method-enabled-vulnerability-detected-on-gateways-WAN-IP/m-p/236939#M39603 <P>We also had this identified as vulnerability from external pentest:</P><P>Extended HTTP Methods Allowed</P><P>By issuing an "OPTIONS" Web Request to the remote Web Server (HTTP OPTIONS Method), we have managed to identify the extended HTTP Methods supported.</P><P>We have managed to identify that the remote Web Server supports the following HTTP Methods:</P><P>Based on the response to an OPTIONS request :</P><P>- HTTP methods GET HEAD OPTIONS POST are allowed on :</P><P>/sslvpn/Login</P><P>Some of the extended HTTP methods that are configured on the remote web server can potentially pose a security risk for the web application(s), as they provide the opportunity to an attacker to modify the files stored on the web server or disclose sensitive information such as the base names and extensions used by the webserver.</P><P>Any idea why it's enabled and how we can disable?</P> Fri, 27 Dec 2024 09:32:36 GMT https://community.checkpoint.com/t5/General-Topics/OPTIONS-Method-enabled-vulnerability-detected-on-gateways-WAN-IP/m-p/236939#M39603 Antonis_Hassiot 2024-12-27T09:32:36Z