Описание
Authenticated Gaia users can inject code or commands by global variables through special HTTP requests. A Security fix that mitigates this vulnerability is available.
Затрагиваемое ПО
Checkpoint Gaia osCheckpoint ClusterxlCheckpoint Multi-domain managementCheckpoint Quantum 6700Checkpoint Quantum maestroCheckpoint Quantum scalable chassisCheckpoint Quantum security gatewayCheckpoint Quantum security managementCheckpoint Quantum spark
CVSS
| Балл | 8 — высокая |
| Вектор | CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Источники
https://support.checkpoint.com/results/sk/sk182743