Check Point response to IPMI vulnerabilities
||Data Center Security Appliances, Smart-1, Power-1, IAS, Enterprise Appliances, Scalable Platforms Appliances
||SecurePlatform, SecurePlatform 2.6, Gaia
|Platform / Model
||4000, 12000, 12000 VSX, 13000, 21000, 21000 VSX, Smart-1, Power-1, 61000, 41000
On July 26, 2013 US-CERT published alert TA13-207A: "Risks of Using the Intelligent Platform Management Interface (IPMI)" reporting on vulnerabilities that may affect systems using IPMI.
IPMI is used in Check Point appliances for Lights Out Management (LOM) card.
This article describes exposure of each Check Point appliance and proposed solution.
The LOM firmware versions mentioned in the table below are not vulnerable to the alert above.
If the current LOM firmware version on your device is not mentioned in the table below, you are advised to upgrade the LOM firmware.
- IPMI interface on Data Center Security Appliance 61000 is not exploitable because it is accessible only from the internal chassis network.
This solution is about products that are no longer supported and it will not be updated