How to update IPS to use Check Point's response to Apache Log4j Remote Code Execution (CVE-2021-44228)

Support Center > Search Results > SecureKnowledge Details

Technical Level

Solution ID	sk176884
Technical Level
Product	IPS
Version	R80.10 (EOL), R80.20 (EOL), R80.30 (EOL), R80.40, R81, R81.10
Date Created	11-Dec-2021
Last Modified	15-Dec-2021

Solution

This SK describes how to update your IPS profile to include Check Point response to Apache Log4j Remote Code Execution (CVE-2021-44228)

To find out if your setup already contains the IPS update to mitigate this vulnerability:
In the Gateways & Servers tab, switch the columns to Threat Prevention. A column with the title installed IPS version for each gateway is shown. If the version in the column is 634218276 or 635218276 or higher it includes the update.

To update the IPS protections:

Step	Instructions
1	In SmartConsole, click Security Policies > Threat Prevention.
2	In the Custom Policy Tools section, click Updates, and then Click IPS section > Update Now.
3	Install the Threat Prevention Policy.

For more information on updates and activations of IPS protections see the Threat Prevention Administration Guide.

Applies To:

sk176865 - Check Point response to Apache Log4j Remote Code Execution (CVE-2021-44228)

Give us Feedback

Please rate this document

[1=Worst,5=Best]

Comment
	Submitting rating