{"id":4161,"date":"2025-02-11T14:49:35","date_gmt":"2025-02-11T19:49:35","guid":{"rendered":"https:\/\/cert.pa\/?p=4161"},"modified":"2025-02-11T14:49:36","modified_gmt":"2025-02-11T19:49:36","slug":"csirt-panama-aviso-2025-02-11-check-point-libera-actualizaciones-de-seguridad","status":"publish","type":"post","link":"https:\/\/cert.pa\/?p=4161","title":{"rendered":"CSIRT Panam\u00e1 Aviso 2025-02-11 Check Point \u2013 libera actualizaciones de seguridad."},"content":{"rendered":"\n<p><strong>CSIRT Panam\u00e1 Aviso 2025-02-11 Check Point \u2013 libera actualizaciones de seguridad.<\/strong><\/p>\n\n\n\n<p><strong>Gravedad:<\/strong> Media<\/p>\n\n\n\n<p><strong>Fecha de publicaci\u00f3n:<\/strong> 11 de febrero de 2025<\/p>\n\n\n\n<p><strong>Fecha de modificaci\u00f3n:<\/strong> 11 de febrero de 2025<\/p>\n\n\n\n<p><strong>\u00daltima revisi\u00f3n:<\/strong> Revisi\u00f3n B.<\/p>\n\n\n\n<p><strong>Fuente:<\/strong> support.checkpoint.com<\/p>\n\n\n\n<p><strong>Sistemas afectados<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Multi-Domain Security Management<\/li>\n\n\n\n<li>Quantum Security Management R81 (EOS), R81.10, R81.20<\/li>\n<\/ul>\n\n\n\n<p><strong>I. Descripci\u00f3n<\/strong><\/p>\n\n\n\n<p>Check Point libera actualizaci\u00f3n de seguridad para la correcci\u00f3n con el CVE-2024-24911 de posible lectura fuera de l\u00edmites al procesar ciertas solicitudes \u201cPOST\u201d HTTP al servidor de administraci\u00f3n de seguridad con el administrador de dominio al puerto TCP 18264. Las repetidas solicitudes pueden provocar una denegaci\u00f3n de servicio (DoS) del proceso cpca y puede producir un volcado de n\u00facleo.<\/p>\n\n\n\n<p>Se les exhorta a revisar los enlaces en la secci\u00f3n III de referencias, para aplicar las acciones recomendadas del fabricante.<\/p>\n\n\n\n<p><strong>II. Impacto<\/strong><\/p>\n\n\n\n<p><strong>Complejidad de Acceso:<\/strong> Media a Alta<\/p>\n\n\n\n<p><strong>Autenticaci\u00f3n:<\/strong> No requerida para explotarla.<\/p>\n\n\n\n<p><strong>Tipo de impacto:<\/strong> Compromiso parcial o total del sistema.<\/p>\n\n\n\n<p><strong>III. Referencia a soluciones, herramientas e informaci\u00f3n<\/strong><\/p>\n\n\n\n<ol class=\"wp-block-list\" style=\"list-style-type:lower-alpha\">\n<li><a href=\"https:\/\/support.checkpoint.com\/results\/sk\/sk183101\">https:\/\/support.checkpoint.com\/results\/sk\/sk183101<\/a><\/li>\n<\/ol>\n\n\n\n<p><strong>IV. Informaci\u00f3n de contacto<\/strong><\/p>\n\n\n\n<p>CSIRT PANAMA<\/p>\n\n\n\n<p>Autoridad Nacional para la Innovaci\u00f3n Gubernamental<\/p>\n\n\n\n<p>E-Mail: info@cert.pa<\/p>\n\n\n\n<p>Web:&nbsp;&nbsp; http:\/\/www.cert.pa<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CSIRT Panam\u00e1 Aviso 2025-02-11 Check Point \u2013 libera actualizaciones de seguridad. Gravedad: Media Fecha de publicaci\u00f3n: 11 de febrero de 2025 Fecha de modificaci\u00f3n: 11 de febrero de 2025 \u00daltima revisi\u00f3n: Revisi\u00f3n B. Fuente: support.checkpoint.com&#8230;<\/p>\n","protected":false},"author":5,"featured_media":4162,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"categories":[4],"tags":[72,68],"class_list":["post-4161","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-avisos-de-seguridad","tag-avisos-de-seguridad","tag-vulnerabilidades"],"_links":{"self":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/4161","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4161"}],"version-history":[{"count":1,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/4161\/revisions"}],"predecessor-version":[{"id":4163,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/4161\/revisions\/4163"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/media\/4162"}],"wp:attachment":[{"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4161"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4161"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4161"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}