Loading
Generated remediation guidance and an executive summary. No account required.
The IPsec VPN blade has a dedicated portal for downloading and connecting through SSL Network Extender (SNX). If the portal is configured for username/password authentication, it is vulnerable to a brute-force attack on usernames and passwords.
Use CWE-307, Checkpoint vendor hub and Ssl Network Extender product page to widen CVE-2022-23746 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2021-30357 for nearby disclosures in the same product family. Additional editorial context is available in Why “Low” and “Medium” CVEs Still Breach Networks.