Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
umar7
Contributor

vulnerability on firewall

 
0 Kudos
2 Replies
Chris_Atkinson
Employee Employee
Employee

Please note that this community is not an official support channel. 

If you need the assistance of support further to the answers provided in your previous thread on similar topics then please raise an SR with TAC.

Please ensure gateways have a current JHF installed and that you have reviewed the SKs pertaining to the use of SHA-256 with the ICA etc.

 

sk36343: Check Point response to OpenSSH CBC Mode Information Disclosure Vulnerability (CVE-2008-5161)
sk106031: How to change SSH encryption protocols and Message Authentication Code settings
sk65269: Status of OpenSSH CVEs
sk147272: Vulnerability scan shows that Gaia Portal supports SSL medium strength cipher suites
sk162542: Disable non-secure TLS and Cipher protocols
sk120774: Vulnerability scan shows that there are weak ciphers related to TLS 1.2
sk92447: Status of OpenSSL CVEs
sk108252: How to change Gaia Portal's certificate from SHA-1 to SHA-256
sk103840: SHA-1 and SHA-256 certificates in Check Point Internal CA (ICA)
sk100647: Check Point response to common false positives scanning results

CCSM R77/R80/ELITE
0 Kudos
G_W_Albrecht
Legend Legend
Legend

R80.40 JHF T58 is a version from before 19 July 2020. I would suggest to upgrade !

R81 JHF T69 is recent, but:

Check Point Recommended version for all deployments is R81.10 Take 335 with its Recommended Jumbo Hotfix Accumulator Take 79

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events