CVE-2025-2028

Description

Lack of TLS validation when downloading a CSV file including mapping from IPs to countries used ONLY for displaying country flags in logs

CVSS 3.1

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

Low

checkpoint / Check Point Management Log Serverversions R81.10, R81.20, R82 – versions R81.10, R81.20, R82