Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
umar7
Contributor
Jump to solution

firewall vulnerability

Based on recent security review for vulnerability (CVE-2023-22809), the Firewall servers are impacted.

Kindly share the related steps or article for how to upgrade the SUDO version 1.8.19p2 to 1.9.12p2 

0 Kudos
1 Solution

Accepted Solutions
_Val_
Admin
Admin

Hi @umar7 

Check Point is not exploitable to this CVE since to run the sudo or sudoedit command you need to be in Expert mode, which means that you are already admin and the privilege escalation is meaningless.


Also, users on Gaia are not configured to run the sudo command (not sudoers).
Gaia Embedded Appliances are also not vulnerable since they do not use sudo at all.

Mind, if you need an official written answer from Check Point (the one I am giving you is not, technically), open a TAC request.


View solution in original post

0 Kudos
2 Replies
PhoneBoy
Admin
Admin

sudo requires access to the expert mode shell, which is already root access.
Therefore, this vulnerability is not relevant.

0 Kudos
_Val_
Admin
Admin

Hi @umar7 

Check Point is not exploitable to this CVE since to run the sudo or sudoedit command you need to be in Expert mode, which means that you are already admin and the privilege escalation is meaningless.


Also, users on Gaia are not configured to run the sudo command (not sudoers).
Gaia Embedded Appliances are also not vulnerable since they do not use sudo at all.

Mind, if you need an official written answer from Check Point (the one I am giving you is not, technically), open a TAC request.


0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events