Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

CVE-2026-48134— SQL injection issue in UserCheck Portal when DLP Software Blade is active

CVSS 5.6 · Medium EPSS 0.06% · P18

Possible ATT&CK Techniques 1AI

T1190 · Exploit Public-Facing Application

Affected Version Matrix 4

VendorProductVersion RangeStatus
checkpointQuantum Security GatewayR82.10 with Jumbo Hotfix Take 6 or belowaffected
R82 with Jumbo Hotfix Take 91 or belowaffected
R81.20 with Jumbo Hotfix Take 127 or belowaffected
All releases from R81.10 and belowaffected
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-48134

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
SQL injection issue in UserCheck Portal when DLP Software Blade is active
Source: NVD (National Vulnerability Database)
Vulnerability Description
When the DLP is active, the UserCheck Web Portal contains an input-handling issue in the UserChoice flow. Under specific conditions, an attacker who can access the UserCheck Ask page could attempt to manipulate the Security Gateway's stored DLP/UserCheck incident information. This could lead to disruptions such as loss of stored incident entries, incorrect handling of pending approvals, or resource impact if the issue is abused repeatedly. Exposure is reduced if the UserCheck Portal is not accessible from untrusted networks.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
Source: NVD (National Vulnerability Database)
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Source: NVD (National Vulnerability Database)
Vulnerability Title
Check Point Security Gateway 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Check Point Security Gateway是以色列Check Point公司的一系列网络安全网关设备。 Check Point Security Gateway存在安全漏洞,该漏洞源于DLP激活时UserCheck Web Portal在UserChoice流程中存在输入处理问题,可能导致攻击者操纵存储的DLP或UserCheck事件信息,造成存储条目丢失、待处理审批处理错误或资源影响。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
checkpointQuantum Security Gateway R82.10 with Jumbo Hotfix Take 6 or below -

II. Public POCs for CVE-2026-48134

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2026-48134

登录查看更多情报信息。

Vendor Advisories for CVE-2026-48134 (1)

Same Patch Batch · checkpoint · 2026-05-26 · 6 CVEs total

CVE-2026-481328.1 HIGHVPN service may restart unexpectedly when processing IKE traffic over NAT-T 4500/UDP
CVE-2026-481318.1 HIGHVPND IKE Fragment Reassembly - Heap Out-of-Bounds Write via Sequence Number Zero
CVE-2026-481337.5 HIGHIdentity Awareness Captive Portal - Unauthenticated Local File Inclusion
CVE-2026-481355.3 MEDIUMHTTP service can incorrectly process malformed HTTP requests
CVE-2026-481364.1 MEDIUMAuthenticated Administrator Role-Based Access Control Bypass in Compliance

IV. Related Vulnerabilities

Same product: Quantum Security Gateway
Same vendor: checkpoint
Same weakness: CWE-89

V. Comments for CVE-2026-48134

No comments yet

Leave a comment