Checkpoint: >> Ssl Network Extender Security Vulnerabilities
The IPsec VPN blade has a dedicated portal for downloading and connecting through SSL Network Extender (SNX). If the portal is configured for username/password authentication, it is vulnerable to a brute-force attack on usernames and passwords.
CVSS Score
7.5
EPSS Score
0.002
Published
2022-11-30
SSL Network Extender Client for Linux before build 800008302 reveals part of the contents of the configuration file supplied, which allows partially disclosing files to which the user did not have access.
CVSS Score
5.3
EPSS Score
0.273
Published
2021-06-08