Check Point Security Gateways RCE via CVE-2021-40438
Introduction We recently discovered a critical vulnerability in Check Point Security Gateways that allows unauthenticated attackers to achieve remote code execution (RCE) by exploiting CVE-2021-40438. This vulnerability affects multiple versions of Check Point Gateways and remains exploitable on many internet-facing systems. Our discovery began during internal testing of the recently disclosed Arbitrary File Read vulnerability […]
Read article