2024 Advisories Archive

Severity Date Published Date Updated Check Point Reference Source Industry Reference Description
High 16 Sep 2024 15 Oct 2024 CPAI-2024-0704 HTML Entity Encoding Multiple Vulnerabilities
High 15 Oct 2024 15 Oct 2024 CPAI-2024-0963 CVE-2024-9380
Ivanti Cloud Services Appliance Command Injection (CVE-2024-9380)
Critical 2 Jul 2024 15 Oct 2024 CPAI-2024-0542 CVE-2024-37032
Ollama Directory Traversal (CVE-2024-37032)
Medium 15 Oct 2024 15 Oct 2024 CPAI-2024-0955 CVE-2024-3346
Byzoro Smart S80 Command Injection (CVE-2024-3346)
High 15 Oct 2024 15 Oct 2024 CPAI-2024-0931 CVE-2024-35388
TOTOLINK NR1800X Buffer Overflow (CVE-2024-35388)
Critical 15 Oct 2024 15 Oct 2024 CPAI-2024-0962 CVE-2024-8963
Ivanti Cloud Services Appliance Path Traversal (CVE-2024-8963)
High 14 Oct 2024 14 Oct 2024 CPAI-2023-1916 CVE-2023-44860
Netis Systems N3M Denial of Service (CVE-2023-44860)
High 14 Oct 2024 14 Oct 2024 CPAI-2024-0942 CVE-2024-5016
Progress WhatsUp Gold Insecure Deserialization (CVE-2024-5016)
High 14 Oct 2024 14 Oct 2024 CPAI-2024-0940 CVE-2024-7855
WordPress Hotel Booking Plugin Arbitrary File Upload (CVE-2024-7855)
High 14 Oct 2024 14 Oct 2024 CPAI-2020-4203 CVE-2020-25078
D-Link DCS-2530L Authentication Bypass (CVE-2020-25078)
High 14 Oct 2024 14 Oct 2024 CPAI-2023-1915 CVE-2023-29804
I-O DATA WFS-SR03W Command Injection (CVE-2023-29804)
Critical 14 Oct 2024 14 Oct 2024 CPAI-2024-0936 CVE-2024-20017
MediaTek Multiple Products Buffer Overflow (CVE-2024-20017)
High 14 Oct 2024 14 Oct 2024 CPAI-2017-1937 CVE-2017-9946
Siemens Muiltiple Products Information Disclosure (CVE-2017-9946)
High 14 Oct 2024 14 Oct 2024 CPAI-2024-0928 CVE-2024-5565
Vanna Remote Code Execution (CVE-2024-5565)
Critical 14 Oct 2024 14 Oct 2024 CPAI-2024-0912 CVE-2024-44087
Siemens Automation License Manager Denial of Service (CVE-2024-44087)
High 14 Oct 2024 14 Oct 2024 CPAI-2024-0908 CVE-2024-46313
TP-Link WR941ND Stack Overflow (CVE-2024-46313)
High 14 Oct 2024 14 Oct 2024 CPAI-2023-1909 CVE-2023-1163
CVE-2023-6265
DrayTek Vigor2960 Directory Traversal (CVE-2023-1163; CVE-2023-6265)
Medium 14 Oct 2024 14 Oct 2024 CPAI-2024-0873 CVE-2024-27564
OpenAI ChatGPT Server-Side Request Forgery (CVE-2024-27564)
Critical 8 Aug 2024 14 Oct 2024 CPAI-2021-2201 CVE-2021-21887
CVE-2021-21889
CVE-2021-21890
CVE-2021-21891
CVE-2021-21892
Lantronix PremierWave 2050 Buffer Overflow (CVE-2021-21887; CVE-2021-21889; CVE-2021-21890; CVE-2021-21891; CVE-2021-21892)
Critical 29 Feb 2024 14 Oct 2024 CPAI-2023-1557 CVE-2023-24343
CVE-2023-24344
CVE-2023-24345
CVE-2023-24346
CVE-2023-24347
CVE-2023-24348
CVE-2023-24349
CVE-2023-24350
CVE-2023-24351
CVE-2023-24352
CVE-2024-9514
CVE-2024-9515
CVE-2024-9532
CVE-2024-9533
D-Link DIR-605L Buffer Overflow (CVE-2023-24343; CVE-2023-24344; CVE-2023-24345; CVE-2023-24346; CVE-2023-24347; CVE-2023-24348; CVE-2023-24349; CVE-2023-24350; CVE-2023-24351; CVE-2023-24352; CVE-2024-9514; CVE-2024-9515; CVE-2024-9532; CVE-2024-9533)
Critical 18 Jan 2024 14 Oct 2024 CPAI-2024-0016 CVE-2024-21887
Ivanti Command Injection (CVE-2024-21887)
High 13 Oct 2024 13 Oct 2024 CPAI-2024-0954 CVE-2024-9463
Palo Alto Networks Expedition Command Injection (CVE-2024-9463)
Medium 13 Oct 2024 13 Oct 2024 CPAI-2020-4204 CVE-2020-2140
Jenkins Audit Trail Plugin Cross-Site Scripting (CVE-2020-2140)
Critical 13 Oct 2024 13 Oct 2024 CPAI-2024-0944 CVE-2024-46419
CVE-2024-46451
TOTOLINK AC1200 Buffer Overflow (CVE-2024-46419; CVE-2024-46451)
Critical 13 Oct 2024 13 Oct 2024 CPAI-2024-0935 CVE-2024-8275
WordPress The Events Calendar Plugin SQL Injection (CVE-2024-8275)
Medium 13 Oct 2024 13 Oct 2024 CPAI-2022-2135 CVE-2022-45362
WordPress Paytm Payment Gateway Plugin Server-Side Request Forgery (CVE-2022-45362)
Critical 13 Oct 2024 13 Oct 2024 CPAI-2024-0923 CVE-2024-29847
Ivanti Endpoint Manager Insecure Deserialization (CVE-2024-29847)
High 13 Oct 2024 13 Oct 2024 CPAI-2024-0914 CVE-2024-8669
WordPress Softaculous Backuply Plugin SQL Injection (CVE-2024-8669)
Critical 13 Oct 2024 13 Oct 2024 CPAI-2021-2220 CVE-2021-40323
Cobbler Project Cobbler Remote Code Execution (CVE-2021-40323)
High 13 Oct 2024 13 Oct 2024 CPAI-2021-2219 CVE-2021-40324
Cobbler Project Cobbler Arbitrary File Write (CVE-2021-40324)
Critical 13 Oct 2024 13 Oct 2024 CPAI-2020-4200 CVE-2020-17523
Apache Shiro Authentication Bypass (CVE-2020-17523)
Critical 29 Aug 2024 13 Oct 2024 CPAI-2021-2207 CVE-2021-33045
Dahua Security Multiple Products Authentication Bypass (CVE-2021-33045)
High 10 Oct 2024 10 Oct 2024 CPAI-2024-0952 CVE-2024-9466
Palo Alto Networks Expedition Information Disclosure (CVE-2024-9466)
High 10 Oct 2024 10 Oct 2024 CPAI-2024-0949 CVE-2024-9465
Palo Alto Networks Expedition SQL Injection (CVE-2024-9465)
High 10 Oct 2024 10 Oct 2024 CPAI-2024-0947 CVE-2024-9464
Palo Alto Networks Expedition Command Injection (CVE-2024-9464)
Critical 10 Oct 2024 10 Oct 2024 CPAI-2024-0945 CVE-2024-37404
Ivanti Remote Code Execution (CVE-2024-37404)
High 10 Oct 2024 10 Oct 2024 CPAI-2024-0943 CVE-2024-5910
Palo Alto Networks Expedition Authentication Bypass (CVE-2024-5910)
High 10 Oct 2024 10 Oct 2024 CPAI-2024-0927 CVE-2024-36728
TRENDnet TEW-827DRU Buffer Overflow (CVE-2024-36728)
Medium 10 Oct 2024 10 Oct 2024 CPAI-2023-1914 CVE-2023-52085
Winter CMS Local File Inclusion (CVE-2023-52085)
High 10 Oct 2024 10 Oct 2024 CPAI-2024-0924 CVE-2024-6209
ABB ASPECT Directory Traversal (CVE-2024-6209)
Critical 10 Oct 2024 10 Oct 2024 CPAI-2023-1913 CVE-2023-0635
CVE-2023-0636
ABB ASPECT Command Injection (CVE-2023-0635; CVE-2023-0636)
Critical 10 Oct 2024 10 Oct 2024 CPAI-2024-0919 CVE-2024-6298
ABB ASPECT Remote Code Execution (CVE-2024-6298)
Critical 8 Oct 2024 10 Oct 2024 CPAI-2024-0918 CVE-2024-45519
Zimbra Collaboration Remote Command Execution (CVE-2024-45519)
High 10 Oct 2024 10 Oct 2024 CPAI-2016-1387 CVE-2016-0742
F5 Nginx Denial of Service (CVE-2016-0742)
Critical 27 Jun 2024 10 Oct 2024 CPAI-2023-1809 CVE-2023-4873
CVE-2023-5684
CVE-2023-6575
CVE-2023-7039
Byzoro Multiple Products SQL Injection (CVE-2023-4873; CVE-2023-5684; CVE-2023-6575; CVE-2023-7039)
Critical 7 Mar 2024 10 Oct 2024 CPAI-2022-2028 CVE-2020-10973
CVE-2020-12127
CVE-2022-31847
CVE-2022-34045
CVE-2022-34046
CVE-2022-34047
CVE-2022-34049
CVE-2022-34576
CVE-2022-48165
Wavlink Routers Authentication Bypass (CVE-2020-10973; CVE-2020-12127; CVE-2022-31847; CVE-2022-34045; CVE-2022-34046; CVE-2022-34047; CVE-2022-34049; CVE-2022-34576; CVE-2022-48165)
Medium 8 Oct 2024 9 Oct 2024 CPAI-2024-0920 Microsoft CVE-2024-43573 CVE-2024-43573
Microsoft Windows MSHTML Platform Spoofing (CVE-2024-43573)
High 8 Oct 2024 8 Oct 2024 CPAI-2024-0921 Microsoft CVE-2024-43572 CVE-2024-43572
Microsoft Management Console Remote Code Execution (CVE-2024-43572)
High 8 Oct 2024 8 Oct 2024 CPAI-2024-0917 Microsoft CVE-2024-43560 CVE-2024-43560
Microsoft Windows Storage Port Driver Elevation of Privilege (CVE-2024-43560)
High 8 Oct 2024 8 Oct 2024 CPAI-2024-0896 Microsoft CVE-2024-43502 CVE-2024-43502
Microsoft Windows Kernel Elevation of Privilege (CVE-2024-43502)
×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK