CVE-2014-8950

Name of the Vulnerable Software and Affected Versions Check Point Security Gateway versions R77 through R77.10

Description The issue is related to resource release errors in the Check Point Security Gateway. It can be exploited by a remote attacker using specially crafted HTTPS requests, potentially leading to a denial of service (crash). This is particularly relevant when the URL Filtering or Identity Awareness blade is in use.

Recommendations For versions R77 through R77.10, consider temporarily restricting access to the HTTPS endpoint to minimize the risk of exploitation until a patch is available. As a temporary workaround, consider disabling the URL Filtering or Identity Awareness blade until a fix is provided.