This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
umar7
Contributor
‎2023-02-02 06:47 PM
Jump to solution

firewall vulnerability

Based on recent security review for vulnerability (CVE-2023-22809), the Firewall servers are impacted.

Kindly share the related steps or article for how to upgrade the SUDO version 1.8.19p2 to 1.9.12p2 

0 Kudos
1 Solution

Accepted Solutions
_Val_
Admin
Admin
‎2023-02-03 01:36 AM
Jump to solution

Hi @umar7 

Check Point is not exploitable to this CVE since to run the sudo or sudoedit command you need to be in Expert mode, which means that you are already admin and the privilege escalation is meaningless.

Also, users on Gaia are not configured to run the sudo command (not sudoers).
Gaia Embedded Appliances are also not vulnerable since they do not use sudo at all.

Mind, if you need an official written answer from Check Point (the one I am giving you is not, technically), open a TAC request.


View solution in original post

0 Kudos
2 Replies
PhoneBoy
Admin
Admin
‎2023-02-02 10:33 PM
Jump to solution

sudo requires access to the expert mode shell, which is already root access.
Therefore, this vulnerability is not relevant.

0 Kudos
_Val_
Admin
Admin
‎2023-02-03 01:36 AM
Jump to solution

Hi @umar7 

Check Point is not exploitable to this CVE since to run the sudo or sudoedit command you need to be in Expert mode, which means that you are already admin and the privilege escalation is meaningless.

Also, users on Gaia are not configured to run the sudo command (not sudoers).
Gaia Embedded Appliances are also not vulnerable since they do not use sudo at all.

Mind, if you need an official written answer from Check Point (the one I am giving you is not, technically), open a TAC request.


0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    Top