Check Point Security Management Server and Domain Management Server cpca Process Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in the cpca process on Check Point Security Management Server and Domain Management Server. In rare scenarios, this process may exit unexpectedly, leading to VPN and SIC connectivity issues, especially if the Certificate Revocation List (CRL) is not cached on the Security Gateway.

Impact

Exiting of the cpca process, causing a denial-of-service condition that disrupts VPN and SIC connectivity, potentially leading to connectivity issues if the CRL is not cached on the Security Gateway.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

0.6

exploitability

7.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

0.6

exploitability

7.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Check Point Security Management Server and Domain Management Server cpca Process Denial-of-Service Vulnerability

Vulnerability

Impact

Affected Products

Check Point Security Management Server

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating