Vulnerability Details : CVE-2004-2679
Check Point Firewall-1 4.1 up to NG AI R55 allows remote attackers to obtain potentially sensitive information by sending an Internet Key Exchange (IKE) with a certain Vendor ID payload that causes Firewall-1 to return a response containing version and other information.
Products affected by CVE-2004-2679
- cpe:2.3:a:checkpoint:firewall-1:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:checkpoint:firewall-1:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:checkpoint:firewall-1:4.1:sp2:*:*:*:*:*:*
- cpe:2.3:a:checkpoint:firewall-1:4.1:sp3:*:*:*:*:*:*
- cpe:2.3:a:checkpoint:firewall-1:4.1:sp1:*:*:*:*:*:*
- cpe:2.3:a:checkpoint:firewall-1:4.1:sp4:*:*:*:*:*:*
- cpe:2.3:a:checkpoint:firewall-1:4.1:sp5:*:*:*:*:*:*
- cpe:2.3:a:checkpoint:firewall-1:4.0:sp3:*:*:*:*:*:*
- cpe:2.3:a:checkpoint:firewall-1:4.0:sp4:*:*:*:*:*:*
- cpe:2.3:a:checkpoint:firewall-1:4.0:sp5:*:*:*:*:*:*
- cpe:2.3:a:checkpoint:firewall-1:4.0:sp6:*:*:*:*:*:*
- cpe:2.3:a:checkpoint:firewall-1:4.0:sp1:*:*:*:*:*:*
- cpe:2.3:a:checkpoint:firewall-1:4.0:sp8:*:*:*:*:*:*
- cpe:2.3:a:checkpoint:firewall-1:4.0:sp2:*:*:*:*:*:*
- cpe:2.3:a:checkpoint:firewall-1:4.0:sp7:*:*:*:*:*:*
- cpe:2.3:a:checkpoint:firewall-1:4.1:sp5a:*:*:*:*:*:*
- cpe:2.3:a:checkpoint:firewall-1:4.1:sp6:*:*:*:*:*:*
- cpe:2.3:a:checkpoint:firewall-1:r55:*:ng-ai:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2004-2679
0.65%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 80 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2004-2679
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.8
|
HIGH | AV:N/AC:L/Au:N/C:C/I:N/A:N |
10.0
|
6.9
|
NIST |
References for CVE-2004-2679
Jump to