https://community.checkpoint.com/t5/General-Topics/CVE-2025-68615-Net-SNMP-snmptrapd-crash/m-p/265903#M44736 <P>Hi Team,</P> <P>It appears that CP is utilizing net-snmp, specifically version 5.8.x. Could someone verify whether this vulnerability is relevant to CP models? Given that CVSS3.1 rates it as 9.8 Critical, I am eager for a response from CP.</P> <P>```</P> <P>rpm -qa | grep snmp<BR />net-snmp-libs-5.8-7.cp997000091.2.i686<BR /><STRONG>net-snmp-5.8-7.cp997000091.2.i686</STRONG><BR />net-snmp-utils-5.8-7.cp997000091.2.i686<BR />net-snmp-sysvinit-5.8-7.cp997000091.2.i686<BR />os_net_snmp_cpis-0.1-cp997000080.i686<BR />net-snmp-agent-libs-5.8-7.cp997000091.2.i686<BR />os_net_snmp_config-0.1-cp997000005.i686</P> <P>```</P> Tue, 23 Dec 2025 11:50:22 GMT Blason_R 2025-12-23T11:50:22Z https://community.checkpoint.com/t5/General-Topics/CVE-2025-68615-Net-SNMP-snmptrapd-crash/m-p/265903#M44736 <P>Hi Team,</P> <P>It appears that CP is utilizing net-snmp, specifically version 5.8.x. Could someone verify whether this vulnerability is relevant to CP models? Given that CVSS3.1 rates it as 9.8 Critical, I am eager for a response from CP.</P> <P>```</P> <P>rpm -qa | grep snmp<BR />net-snmp-libs-5.8-7.cp997000091.2.i686<BR /><STRONG>net-snmp-5.8-7.cp997000091.2.i686</STRONG><BR />net-snmp-utils-5.8-7.cp997000091.2.i686<BR />net-snmp-sysvinit-5.8-7.cp997000091.2.i686<BR />os_net_snmp_cpis-0.1-cp997000080.i686<BR />net-snmp-agent-libs-5.8-7.cp997000091.2.i686<BR />os_net_snmp_config-0.1-cp997000005.i686</P> <P>```</P> Tue, 23 Dec 2025 11:50:22 GMT https://community.checkpoint.com/t5/General-Topics/CVE-2025-68615-Net-SNMP-snmptrapd-crash/m-p/265903#M44736 Blason_R 2025-12-23T11:50:22Z https://community.checkpoint.com/t5/General-Topics/CVE-2025-68615-Net-SNMP-snmptrapd-crash/m-p/265904#M44737 <P>Best to raise a support case with TAC for an official answer and flag with your SE if not already.</P> Tue, 23 Dec 2025 11:58:12 GMT https://community.checkpoint.com/t5/General-Topics/CVE-2025-68615-Net-SNMP-snmptrapd-crash/m-p/265904#M44737 Chris_Atkinson 2025-12-23T11:58:12Z https://community.checkpoint.com/t5/General-Topics/CVE-2025-68615-Net-SNMP-snmptrapd-crash/m-p/265905#M44738 <P>Indeed, to be honest, the community is much faster than TAC. <span class="lia-unicode-emoji" title=":winking_face:">😉</span></P> <P>In any case, I have already contacted the local SE.</P> <P>Thanks</P> Tue, 23 Dec 2025 12:05:24 GMT https://community.checkpoint.com/t5/General-Topics/CVE-2025-68615-Net-SNMP-snmptrapd-crash/m-p/265905#M44738 Blason_R 2025-12-23T12:05:24Z https://community.checkpoint.com/t5/General-Topics/CVE-2025-68615-Net-SNMP-snmptrapd-crash/m-p/265906#M44739 <P>The correct way to get a security vulnerability response from Check Point is to open a ticket with TAC.</P> <P>Responses in the community are not considered official unless we explicitly state that they are.</P> Tue, 23 Dec 2025 12:44:14 GMT https://community.checkpoint.com/t5/General-Topics/CVE-2025-68615-Net-SNMP-snmptrapd-crash/m-p/265906#M44739 _Val_ 2025-12-23T12:44:14Z https://community.checkpoint.com/t5/General-Topics/CVE-2025-68615-Net-SNMP-snmptrapd-crash/m-p/265907#M44740 <P>Yep - already opened and following up with the TAC</P> Tue, 23 Dec 2025 12:45:10 GMT https://community.checkpoint.com/t5/General-Topics/CVE-2025-68615-Net-SNMP-snmptrapd-crash/m-p/265907#M44740 Blason_R 2025-12-23T12:45:10Z https://community.checkpoint.com/t5/General-Topics/CVE-2025-68615-Net-SNMP-snmptrapd-crash/m-p/266005#M44752 <P>That's the official update from TAC. so for now I would consider no issues</P> <BLOCKQUOTE><HR /><a href="https://community.checkpoint.com/t5/user/viewprofilepage/user-id/1551">@Blason_R</a>&nbsp;wrote:<BR /> <P>Yep - already opened and following up with the TAC</P> <HR /></BLOCKQUOTE> <BLOCKQUOTE><HR /><LI-CODE lang="markup">After thorough research, At this time, we do not have an official advisory or confirmation from Check Point specific to this CVE. However, we would like to inform you that our internal RnD teams are actively reviewing this vulnerability to assess whether it is exploitable on Check Point devices. As of now, no definitive findings or mitigation details are available. We will create an IPS protection if it is vulnerable and push via database update. Based on the current internal assessment timelines, a further update is tentatively expected by March 2026.</LI-CODE><a href="https://community.checkpoint.com/t5/user/viewprofilepage/user-id/1551">@Blason_R</a>&nbsp;wrote:<BR /> <P>Yep - already opened and following up with the TAC</P> <HR /></BLOCKQUOTE> <P>&nbsp;</P> Thu, 25 Dec 2025 05:52:29 GMT https://community.checkpoint.com/t5/General-Topics/CVE-2025-68615-Net-SNMP-snmptrapd-crash/m-p/266005#M44752 Blason_R 2025-12-25T05:52:29Z