https://community.checkpoint.com/t5/General-Topics/CVE-2025-45582-tar-Tar-path-traversal/m-p/255349#M42922 <P>It seems like this would require explicit actions by a trusted administrative user using maliciously crafted files to exploit.<BR />Not to say this won't get fixed, but it's likely going to be done as part of the normal JHF process.<BR />For a formal response, contact TAC.&nbsp;</P> Mon, 18 Aug 2025 15:36:46 GMT PhoneBoy 2025-08-18T15:36:46Z https://community.checkpoint.com/t5/General-Topics/CVE-2025-45582-tar-Tar-path-traversal/m-p/255292#M42899 <P>Hi Team,</P> <P>&nbsp;</P> <P>According to GitHub, a recent vulnerability (CVE-2025-45582) has been reported, classified as medium severity. Although the impact is not severe on its own.</P> <P>As vulnerability scanners begin to detect this issue, it's likely that our systems will be flagged soon. To mitigate potential disruptions, I recommend checking with Checkpoint's support team to determine if they plan to release any patches or updates for this vulnerability in the near future.</P> <P><A href="https://www.cve.org/CVERecord?id=CVE-2025-45582" target="_blank">https://www.cve.org/CVERecord?id=CVE-2025-45582</A></P> <P><A href="https://github.com/i900008/vulndb/blob/main/Gnu_tar_vuln.md" target="_blank">https://github.com/i900008/vulndb/blob/main/Gnu_tar_vuln.md</A></P> <P><A href="https://lists.gnu.org/archive/html/bug-tar/2025-08/msg00012.html" target="_blank">https://lists.gnu.org/archive/html/bug-tar/2025-08/msg00012.html</A></P> Mon, 18 Aug 2025 06:33:05 GMT https://community.checkpoint.com/t5/General-Topics/CVE-2025-45582-tar-Tar-path-traversal/m-p/255292#M42899 Blason_R 2025-08-18T06:33:05Z https://community.checkpoint.com/t5/General-Topics/CVE-2025-45582-tar-Tar-path-traversal/m-p/255316#M42901 <P>&nbsp;</P> <P>Note if not already you can subscribe to updates regarding IPS protections here:</P> <P><A href="https://advisories.checkpoint.com/defense/advisories/public/sdnews/" target="_blank" rel="noopener">https://advisories.checkpoint.com/defense/advisories/public/sdnews/</A><BR /><BR /></P> Mon, 18 Aug 2025 10:39:27 GMT https://community.checkpoint.com/t5/General-Topics/CVE-2025-45582-tar-Tar-path-traversal/m-p/255316#M42901 Chris_Atkinson 2025-08-18T10:39:27Z https://community.checkpoint.com/t5/General-Topics/CVE-2025-45582-tar-Tar-path-traversal/m-p/255349#M42922 <P>It seems like this would require explicit actions by a trusted administrative user using maliciously crafted files to exploit.<BR />Not to say this won't get fixed, but it's likely going to be done as part of the normal JHF process.<BR />For a formal response, contact TAC.&nbsp;</P> Mon, 18 Aug 2025 15:36:46 GMT https://community.checkpoint.com/t5/General-Topics/CVE-2025-45582-tar-Tar-path-traversal/m-p/255349#M42922 PhoneBoy 2025-08-18T15:36:46Z