CVE-2026-48135 PUBLISHED

HTTP service can incorrectly process malformed HTTP requests

Assigner: checkpoint
Reserved: 20.05.2026 Published: 26.05.2026 Updated: 26.05.2026

A Check Point HTTP-based service can incorrectly handle malformed HTTP requests. The issue is related to HTTP request parsing and validation.

Metrics

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
CVSS Score: 5.3

Product Status

Vendor checkpoint
Product Quantum Security Gateway
Versions
  • Version R82.10 with Jumbo Hotfix Take 6 or below is affected
  • Version R82 with Jumbo Hotfix Take 91 or below is affected
  • Version R81.20 with Jumbo Hotfix Take 127 or below is affected
  • Version All releases from R81.10 and below is affected

References

Problem Types

  • CWE-122: Heap-based Buffer Overflow CWE