Create a Post
Dan_Roddy
Collaborator

Unauthorized VPN access to internal networks via IKEv2 tunnel (CVE-2019-8456)

How would I alert on an unauthorized attempt to gain access to our site-to-site VPN in the case of CVE-2019-8456?

Thank  you,

Dan

0 Kudos
1 Reply
_Val_
Admin
Admin

I am not sure you can. The vulnerability and prevention steps are listed here: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...

 

If you cannot upgrade to the specific HFA where the issue is fixed, it would make sense to disable IKEv2 meanwhile

0 Kudos