漏洞概述 漏洞名称: CVE-2026-48131 - VPND IKE Fragment Reassembly - Heap Out-of-Bounds Write via Sequence Number Zero 描述: VPN服务在处理IKE端口500/UDP上接收到的意外IKE片段值时,可能会导致服务意外终止,从而引发拒绝服务(临时中断VPN相关功能)。 监控与恢复: VPN服务由Check Point WatchDog服务监控,并自动重启。 影响范围 受影响产品: - Security Gateways: R77.20 (E0S), R77.30 (E0S), R80.10 (E0S), R80.20 (E0S), R80.20 X (E0S), R80.30 (E0S), R80.40 (E0S), R81 (E0S), R81.10 (E0S), R81.10.X, R81.20, R82, R82.00.X, R82.10 - Spark Firewall: R82.10 受影响版本: - R82.10 with Jumbo Hotfix Take 6 or below - R82 with Jumbo Hotfix Take 91 or below - R81.20 with Jumbo Hotfix Take 127 or below - All releases from R81.10 and below 修复方案 缓解措施: - 启用IPS保护“IKE Unsigned Underflow”在Protection模式。 - 操作步骤: 1. 在SmartConsole中,导航到Security Policies > Threat Prevention。 2. 在Custom Policy Tools底部,点击IPS Protection。 3. 搜索“IKE Unsigned Underflow”。 4. 双击打开。 5. 编辑Actions,确保设置为Prevent。 具体修复版本: - Security Gateways: - Jumbo Hotfix Accumulator for R82.10 starting from Take 19 - Jumbo Hotfix Accumulator for R82 starting from Take 103 - Jumbo Hotfix Accumulator for R81.20 starting from Take 141 - Spark Firewalls: - R81.10.17 - sk183153 - R82.00.10 - sk184357 其他信息 文章属性: - 访问级别: General - 严重性: High - 状态: Approved - 创建日期: 2026-05-20 - 最后修改日期: 2026-05-26 页面底部提示 如果未找到所需信息,可联系客户支持团队获取帮助。