This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Gaurav_Pandya
Advisor
‎2022-04-14 03:49 AM

CVE-2021-31805

Hi,

What is Checkpoint response for CVE-2021-31805?  This is an RCE for Apache Struts 2.

 

Apache

https://cwiki.apache.org/confluence/display/WW/S2-062

 

Mitre

https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-31805

0 Kudos
8 Replies
PhoneBoy
Admin
Admin
‎2022-04-14 07:57 AM

In what capacity, an IPS signature?
I presume we'll have one shortly if that's the case.

0 Kudos
Gaurav_Pandya
Advisor
‎2022-04-18 09:59 AM
In response to PhoneBoy

Hi PhoneBoy,

Do you have any idea about this? How Checkpoint can protect this vulnerability. Still there is no IPS signature.

the_rock
Legend
Legend
‎2022-04-18 12:16 PM
In response to Gaurav_Pandya

Just my personal suggestion...if I were you, I would either contact your local SE and see if they have any details on it and also contact TAC and maybe ask them if there is anything internal they can find. I understand they are not allowed to share internal info, but at least they can tell you if there is anything about it.

0 Kudos
Gaurav_Pandya
Advisor
‎2022-04-19 06:19 AM
In response to the_rock

Thanks. I will check with SE

0 Kudos
the_rock
Legend
Legend
‎2022-04-14 08:16 AM

I dont believe its addressed yet, as there are no SK's about it or anything listed for this CVE in IPS protections.

Andy

0 Kudos
Gaurav_Pandya
Advisor
‎2022-04-15 10:30 AM
In response to the_rock

Can we expect IPS signature to be released? Or any kind of protection?

0 Kudos
the_rock
Legend
Legend
‎2022-04-15 10:31 AM
In response to Gaurav_Pandya

That, I have no clue mate. I would let one of CP employees answer that question for you.

Andy

0 Kudos
Gaurav_Pandya
Advisor
‎2022-05-04 02:05 AM
In response to the_rock

I have raised a TAC case for the same and now we have IPS signature for CVE-2021-31805

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events