Home / 2025 Advisories Archive

2025 Advisories Archive

Sort By: 2025  2024  2023  2022  2021  2020  2019  2018  2017  2016  2015  2014  2013  2012  2011  2010  2009  2008  2007  2006  2005  2004  1999  1998  

Security Gateway R75 and above

Security Advisories Subscription



Severity Date Published Date Updated Check Point Reference Source Industry Reference Description
High 17 Jan 2025 23 Jan 2025 CPAI-2024-1224 CVE-2024-49113
 Microsoft Windows LDAP Denial of Service (CVE-2024-49113)
High 23 Jan 2025 23 Jan 2025 CPAI-2024-1304 CVE-2024-51818
 WordPress Fancy Product Designer Plugin SQL Injection (CVE-2024-51818)
High 23 Jan 2025 23 Jan 2025 CPAI-2024-1253 CVE-2024-11651
CVE-2024-11652
CVE-2024-11653
CVE-2024-11654
CVE-2024-11655
CVE-2024-11656
CVE-2024-11657
CVE-2024-11658
CVE-2024-11659
 EnGenius Multiple Products Command Injection (CVE-2024-11651; CVE-2024-11652; CVE-2024-11653; CVE-2024-11654; CVE-2024-11655; CVE-2024-11656; CVE-2024-11657; CVE-2024-11658; CVE-2024-11659)
Medium 23 Jan 2025 23 Jan 2025 CPAI-2024-1290 CVE-2024-34787
 Ivanti Endpoint Manager Directory Traversal (CVE-2024-34787)
High 23 Jan 2025 23 Jan 2025 CPAI-2024-1295 CVE-2024-43452
 Microsoft Windows Privilege Escalation (CVE-2024-43452)
High 23 Jan 2025 23 Jan 2025 CPAI-2025-0009 CVE-2025-0107
 Palo Alto Networks Expedition Command Injection (CVE-2025-0107)
High 23 Jan 2025 23 Jan 2025 CPAI-2024-1310 CVE-2024-52875
 GFI Kerio Control CRLF Injection (CVE-2024-52875)
High 23 Jan 2025 23 Jan 2025 CPAI-2024-1319 CVE-2024-49112
 Microsoft Windows LDAP Remote Code Execution (CVE-2024-49112)
High 23 Jan 2025 23 Jan 2025 CPAI-2024-1305 CVE-2024-53691
 QNAP QTS Remote Code Execution (CVE-2024-53691)
Critical 23 Jan 2025 23 Jan 2025 CPAI-2024-1146 CVE-2024-8877
 Riello NetMan 204 Firmware SQL Injection (CVE-2024-8877)
High 23 Jan 2025 23 Jan 2025 CPAI-2024-1307 CVE-2024-27292
 Docassemble Information Disclosure (CVE-2024-27292)
Critical 22 Jan 2025 22 Jan 2025 CPAI-2024-1294 CVE-2024-11320
 Pandora FMS Command Injection (CVE-2024-11320)
Critical 21 Jan 2025 21 Jan 2025 CPAI-2023-1996 CVE-2023-37754
 PowerJob Command Injection (CVE-2023-37754)
Critical 21 Jan 2025 21 Jan 2025 CPAI-2023-1994 CVE-2023-46347
 Ndk Design SQL Injection (CVE-2023-46347)
Critical 21 Jan 2025 21 Jan 2025 CPAI-2023-1993 CVE-2023-3224
 Nuxt Code Injection (CVE-2023-3224)
Critical 20 Jan 2025 20 Jan 2025 CPAI-2024-1246 CVE-2024-9932
 WordPress Wux Blog Editor Plugin Arbitrary File Upload (CVE-2024-9932)
High 20 Jan 2025 20 Jan 2025 CPAI-2023-1462 CVE-2023-51572
 Voltronic Power ViewPower Pro Command Injection (CVE-2023-51572)
High 20 Jan 2025 20 Jan 2025 CPAI-2023-1501 CVE-2023-50223
 Inductive Automation Ignition Insecure Deserialization (CVE-2023-50223)
High 20 Jan 2025 20 Jan 2025 CPAI-2007-0499 CVE-2007-3175
 W2B Online Banking SQL Injection (CVE-2007-3175)
Medium 20 Jan 2025 20 Jan 2025 CPAI-2024-1121 CVE-2024-24942
 JetBrains TeamCity Directory Traversal (CVE-2024-24942)
High 20 Jan 2025 20 Jan 2025 CPAI-2024-1230 CVE-2024-47007
CVE-2024-50317
CVE-2024-50318
CVE-2024-50319
 Ivanti Avalanche Denial of Service (CVE-2024-47007; CVE-2024-50317; CVE-2024-50318; CVE-2024-50319)
High 20 Jan 2025 20 Jan 2025 CPAI-2024-1238 CVE-2024-31621
 Flowise Authentication Bypass (CVE-2024-31621)
Critical 20 Jan 2025 20 Jan 2025 CPAI-2024-1239 CVE-2024-3552
 WordPress SalePHPscripts Web Directory Free Plugin SQL Injection (CVE-2024-3552)
Critical 20 Jan 2025 20 Jan 2025 CPAI-2023-1985 CVE-2023-31446
 Cassia Network Gateway Command Injection (CVE-2023-31446)
High 19 Jan 2025 19 Jan 2025 CPAI-2021-2281 CVE-2021-33959
 Plex Media Server Distributed Denial of Service (CVE-2021-33959)
High 16 Jan 2025 16 Jan 2025 CPAI-2024-1243 CVE-2024-25723
 ZenML Server Privilege Escalation (CVE-2024-25723)
Medium 16 Jan 2025 16 Jan 2025 CPAI-2024-1242 CVE-2024-0881
 WordPress Combo Blocks Plugin Authentication Bypass (CVE-2024-0881)
Critical 16 Jan 2025 16 Jan 2025 CPAI-2023-1983 CVE-2023-4521
 WordPress Moove Import XML and RSS Feeds Plugin Remote Code Execution (CVE-2023-4521)
Critical 16 Jan 2025 16 Jan 2025 CPAI-2024-1231 CVE-2024-8856
 WordPress Time Capsule Plugin Remote Code Execution (CVE-2024-8856)
High 16 Jan 2025 16 Jan 2025 CPAI-2024-1227 CVE-2024-21182
 Oracle WebLogic Server Remote Code Execution (CVE-2024-21182)
Medium 16 Jan 2025 16 Jan 2025 CPAI-2016-1270 CVE-2016-8652
 Dovecot Denial of Service (CVE-2016-8652)
High 16 Jan 2025 16 Jan 2025 CPAI-2024-1250 CVE-2024-43464
 Microsoft SharePoint Server Remote Code Execution (CVE-2024-43464)
High 15 Jan 2025 15 Jan 2025 CPAI-2024-1102 CVE-2024-10387
 Rockwell Automation ThinManager ThinServer Out-Of-Bounds Read (CVE-2024-10387)
Medium 15 Jan 2025 15 Jan 2025 CPAI-2024-1081 CVE-2024-10386
 Rockwell Automation ThinManager Authentication Bypass (CVE-2024-10386)
Critical 15 Jan 2025 15 Jan 2025 CPAI-2023-1979 CVE-2023-2227
 Modoboa Information Disclosure (CVE-2023-2227)
Medium 15 Jan 2025 15 Jan 2025 CPAI-2021-2280 CVE-2021-24202
CVE-2021-24203
 WordPress Elementor Website Builder Plugin Cross-Site Scripting (CVE-2021-24202; CVE-2021-24203)
Medium 15 Jan 2025 15 Jan 2025 CPAI-2024-1233 CVE-2024-12343
 TP-Link VN020 F3v Buffer Overflow (CVE-2024-12343)
High 15 Jan 2025 15 Jan 2025 CPAI-2024-1235 CVE-2024-2805
CVE-2024-2806
CVE-2024-2807
CVE-2024-2808
CVE-2024-2809
CVE-2024-2810
CVE-2024-2811
CVE-2024-2813
CVE-2024-2814
 Tenda AC15 Buffer Overflow (CVE-2024-2805; CVE-2024-2806; CVE-2024-2807; CVE-2024-2808; CVE-2024-2809; CVE-2024-2810; CVE-2024-2811; CVE-2024-2813; CVE-2024-2814)
High 15 Jan 2025 15 Jan 2025 CPAI-2024-1241 CVE-2024-54819
 I Librarian Server-Side Request Forgery (CVE-2024-54819)
High 14 Jan 2025 14 Jan 2025 CPAI-2025-0003 Microsoft CVE-2025-21309 CVE-2025-21309
 Microsoft Windows Remote Desktop Services Remote Code Execution (CVE-2025-21309)
Critical 13 Jan 2025 13 Jan 2025 CPAI-2025-0002 CVE-2025-0282
 Ivanti Buffer Overflow (CVE-2025-0282)
Medium 13 Jan 2025 13 Jan 2025 CPAI-2024-1244 CVE-2024-43364
 Cacti Cross-Site Scripting (CVE-2024-43364)
High 13 Jan 2025 13 Jan 2025 CPAI-2024-1234 CVE-2024-13129
 Roxy-WI Command Injection (CVE-2024-13129)
Critical 13 Jan 2025 13 Jan 2025 CPAI-2024-1226 CVE-2024-10456
 Delta Electronics InfraSuite Device Master Insecure Deserialization (CVE-2024-10456)
Medium 12 Jan 2025 12 Jan 2025 CPAI-2022-2161 CVE-2022-2856
 Google Chrome Open Redirect (CVE-2022-2856)
Medium 12 Jan 2025 12 Jan 2025 CPAI-2024-1221 CVE-2024-47855
 Jenkins Denial of Service (CVE-2024-47855)
High 12 Jan 2025 12 Jan 2025 CPAI-2024-1229 CVE-2024-34779
 Ivanti Endpoint Manager SQL Injection (CVE-2024-34779)
Medium 1 Jan 2025 12 Jan 2025 CPAI-2024-1188 CVE-2024-5458
 PHP Authentication Bypass (CVE-2024-5458)
High 12 Jan 2025 12 Jan 2025 CPAI-2024-1237 CVE-2024-32848
 Ivanti Endpoint Manager SQL Injection (CVE-2024-32848)
Medium 12 Jan 2025 12 Jan 2025 CPAI-2024-1170 CVE-2024-54003
 Jenkins Simple Queue Plugin Cross-Site Scripting (CVE-2024-54003)
×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK