Home / 2025 Advisories Archive

2025 Advisories Archive

Sort By: 2025  2024  2023  2022  2021  2020  2019  2018  2017  2016  2015  2014  2013  2012  2011  2010  2009  2008  2007  2006  2005  2004  1999  1998  

Security Gateway R75 and above

Security Advisories Subscription



Severity Date Published Date Updated Check Point Reference Source Industry Reference Description
Critical 14 Apr 2025 6 May 2025 CPAI-2025-0191 CVE-2025-3248
 Langflow Remote Code Execution (CVE-2025-3248)
Critical 6 May 2025 6 May 2025 CPAI-2023-2048 CVE-2023-42818
CVE-2023-43650
CVE-2023-46123
 FIT2CLOUD JumpServer Brute Force Login Attempt (CVE-2023-42818; CVE-2023-43650; CVE-2023-46123)
Medium 6 May 2025 6 May 2025 CPAI-2025-0258 CVE-2025-1103
 D-Link DIR-823X Denial of Service (CVE-2025-1103)
Critical 6 May 2025 6 May 2025 CPAI-2023-2044 CVE-2023-5830
 ColumbiaSoft Document Locator Server-Side Request Forgery (CVE-2023-5830)
Critical 5 May 2025 5 May 2025 CPAI-2021-2318 CVE-2021-27670
 Appspace Server-Side Request Forgery (CVE-2021-27670)
Critical 5 May 2025 5 May 2025 CPAI-2018-2914 CVE-2018-10931
 Cobbler Improper Access Control (CVE-2018-10931)
Critical 5 May 2025 5 May 2025 CPAI-2021-2317 CVE-2021-37538
 SmartDataSoft SmartBlog for PrestaShop SQL Injection (CVE-2021-37538)
Medium 5 May 2025 5 May 2025 CPAI-2024-1630 CVE-2024-44236
 Apple MacOS Out of Bounds Write (CVE-2024-44236)
Critical 27 Apr 2025 5 May 2025 CPAI-2025-0245 CVE-2024-58136
CVE-2025-32432
 Craft CMS Remote Code Execution (CVE-2024-58136; CVE-2025-32432)
Critical 5 May 2025 5 May 2025 CPAI-2024-1617 CVE-2024-56511
 DataEase Directory Traversal (CVE-2024-56511)
Critical 20 Apr 2025 5 May 2025 CPAI-2024-1602 CVE-2023-51984
CVE-2024-33342
 D-Link DIR-822 Command Injection (CVE-2023-51984; CVE-2024-33342)
Critical 8 Apr 2025 5 May 2025 CPAI-2023-2015 CVE-2023-51092
CVE-2023-51095
 Tenda M3 Stack Overflow (CVE-2023-51092; CVE-2023-51095)
Critical 25 Mar 2025 5 May 2025 CPAI-2021-2302 CVE-2019-10955
CVE-2021-23385
CVE-2021-23393
CVE-2021-32618
 Open Redirect Attempt (CVE-2019-10955; CVE-2021-23385; CVE-2021-23393; CVE-2021-32618)
Critical 17 Mar 2025 5 May 2025 CPAI-2024-1459 CVE-2024-22660
CVE-2024-22662
CVE-2024-37631
CVE-2024-37632
CVE-2024-37633
CVE-2024-37634
CVE-2024-37635
CVE-2024-37637
CVE-2024-37639
CVE-2024-37640
 TOTOLINK A3700R Stack Overflow (CVE-2024-22660; CVE-2024-22662; CVE-2024-37631; CVE-2024-37632; CVE-2024-37633; CVE-2024-37634; CVE-2024-37635; CVE-2024-37637; CVE-2024-37639; CVE-2024-37640)
High 4 May 2025 4 May 2025 CPAI-2023-2049 CVE-2023-44221
 SonicWall SMA Command Injection (CVE-2023-44221)
Critical 4 May 2025 4 May 2025 CPAI-2022-2213 CVE-2022-46020
 WBCE CMS Arbitrary File Upload (CVE-2022-46020)
Critical 27 Apr 2025 4 May 2025 CPAI-2025-0246 CVE-2025-31324
 SAP NetWeaver Remote Code Execution (CVE-2025-31324)
Critical 4 May 2025 4 May 2025 CPAI-2025-0242 CVE-2025-27520
 Python BentoML Library Insecure Deserialization (CVE-2025-27520)
Critical 27 Apr 2025 4 May 2025 CPAI-2025-0224 CVE-2025-34028
 Commvault Command Center Remote Code Execution (CVE-2025-34028)
High 4 May 2025 4 May 2025 CPAI-2024-1619 CVE-2024-11477
 7-Zip Integer Underflow (CVE-2024-11477)
Critical 4 May 2025 4 May 2025 CPAI-2025-0210 CVE-2025-28038
CVE-2025-28039
 TOTOLINK EX1200T Remote Command Execution (CVE-2025-28038; CVE-2025-28039)
Medium 4 May 2025 4 May 2025 CPAI-2025-0204 CVE-2025-1608
CVE-2025-1610
 LB-LINK AC1900 Command Injection (CVE-2025-1608; CVE-2025-1610)
Medium 29 Apr 2025 29 Apr 2025 CPAI-2025-0244 CVE-2025-25292
 SAML-Toolkits ruby-saml Authentication Bypass (CVE-2025-25292)
Medium 29 Apr 2025 29 Apr 2025 CPAI-2024-1627 CVE-2024-13162
 Ivanti Endpoint Manager SQL Injection (CVE-2024-13162)
Medium 29 Apr 2025 29 Apr 2025 CPAI-2025-0239 CVE-2025-2546
 D-Link Multiple Products Improper Access Control (CVE-2025-2546)
High 29 Apr 2025 29 Apr 2025 CPAI-2025-0238 CVE-2025-2359
 D-Link DIR-823G Authentication Bypass (CVE-2025-2359)
High 29 Apr 2025 29 Apr 2025 CPAI-2025-0237 CVE-2025-3785
 D-Link DWR-M961 Buffer Overflow (CVE-2025-3785)
Medium 29 Apr 2025 29 Apr 2025 CPAI-2025-0236 CVE-2025-28145
 Edimax AC1200 Command Injection (CVE-2025-28145)
Medium 29 Apr 2025 29 Apr 2025 CPAI-2025-0235 CVE-2025-2993
 Tenda FH1202 Improper Access Control (CVE-2025-2993)
Medium 29 Apr 2025 29 Apr 2025 CPAI-2025-0234 CVE-2025-28142
 Dimax AC1200 Command Injection (CVE-2025-28142)
Medium 29 Apr 2025 29 Apr 2025 CPAI-2025-0233 CVE-2025-3663
 TOTOLINK A3700R Improper Access Control (CVE-2025-3663)
Medium 29 Apr 2025 29 Apr 2025 CPAI-2025-0232 CVE-2025-28144
 Edimax AC1200 Buffer Overflow (CVE-2025-28144)
High 29 Apr 2025 29 Apr 2025 CPAI-2024-1626 CVE-2024-56902
 Geovision GV-ASManager Information Disclosure (CVE-2024-56902)
Medium 29 Apr 2025 29 Apr 2025 CPAI-2025-0231 CVE-2025-31486
 Vite Arbitrary File Read (CVE-2025-31486)
Critical 29 Apr 2025 29 Apr 2025 CPAI-2025-0230 CVE-2025-2747
 Kentico Xperience Authentication Bypass (CVE-2025-2747)
Critical 29 Apr 2025 29 Apr 2025 CPAI-2024-1625 CVE-2024-3080
 ASUS ZenWiFi XT8 Authentication Bypass (CVE-2024-3080)
Critical 29 Apr 2025 29 Apr 2025 CPAI-2024-1624 CVE-2024-57050
 TP-Link WR840N Authentication Bypass (CVE-2024-57050)
High 29 Apr 2025 29 Apr 2025 CPAI-2025-0229 CVE-2025-3538
 D-Link DI-8100 Buffer Overflow (CVE-2025-3538)
Critical 29 Apr 2025 29 Apr 2025 CPAI-2025-0228 CVE-2025-2746
 Kentico Xperience Authentication Bypass (CVE-2025-2746)
High 29 Apr 2025 29 Apr 2025 CPAI-2025-0227 CVE-2025-3346
 Tenda AC7 Buffer Overflow (CVE-2025-3346)
Critical 29 Apr 2025 29 Apr 2025 CPAI-2024-1620 CVE-2024-30568
 Netgear R6850 firmware Command Injection (CVE-2024-30568)
High 29 Apr 2025 29 Apr 2025 CPAI-2025-0219 CVE-2025-3328
 Tenda AC1206 Firmware Buffer Overflow (CVE-2025-3328)
High 29 Apr 2025 29 Apr 2025 CPAI-2023-2045 CVE-2023-45375
 01generator PireosPay SQL Injection (CVE-2023-45375)
Critical 29 Apr 2025 29 Apr 2025 CPAI-2023-2038 CVE-2023-51091
 Tenda M3 Stack Overflow (CVE-2023-51091)
Medium 3 Apr 2025 29 Apr 2025 CPAI-2025-0162 CVE-2025-2748
 Kentico Xperience Cross-Site Scripting (CVE-2025-2748)
High 28 Apr 2025 28 Apr 2025 CPAI-2025-0226 CVE-2025-24587
 WordPress Email Subscription Popup Plugin SQL Injection (CVE-2025-24587)
Critical 28 Apr 2025 28 Apr 2025 CPAI-2025-0221 CVE-2025-32433
 Erlang/OTP SSH Server Remote Code Execution (CVE-2025-32433)
Critical 28 Apr 2025 28 Apr 2025 CPAI-2025-0220 CVE-2025-30406
 Gladinet CentreStack Insecure Deserialization (CVE-2025-30406)
High 28 Apr 2025 28 Apr 2025 CPAI-2025-0216 CVE-2025-30161
 OpenEMR Development Team OpenEMR Stored Cross-Site Scripting (CVE-2025-30161)
High 28 Apr 2025 28 Apr 2025 CPAI-2012-1509 CVE-2012-5863
 Sinapsitech Multiple Products Command Injection (CVE-2012-5863)
×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK