Home / 2023 Advisories Archive

2023 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
Critical	30 Mar 2023	30 Mar 2023	CPAI-2022-1418		CVE-2022-42475	Fortinet FortiOS Heap-Based Buffer Overflow (CVE-2022-42475)
High	29 Mar 2023	29 Mar 2023	CPAI-2023-0162			NCSC Security Scanner
High	29 Mar 2023	29 Mar 2023	CPAI-2023-0161			Cyberscan.io Security Scanner
High	29 Mar 2023	29 Mar 2023	CPAI-2023-0157			Detectify Security Scanner
High	29 Mar 2023	29 Mar 2023	CPAI-2019-2872		CVE-2019-13767	Google Chrome Use After Free (CVE-2019-13767)
Critical	29 Mar 2023	29 Mar 2023	CPAI-2017-1628		CVE-2017-2805	Foscam C1 Buffer Overflow (CVE-2017-2805)
Critical	29 Mar 2023	29 Mar 2023	CPAI-2022-1365		CVE-2022-4060	WordPress User Post Gallery Plugin Command Injection (CVE-2022-4060)
Critical	16 Jan 2023	29 Mar 2023	CPAI-2023-0035		CVE-2022-46888	Cross-Site Scripting Obfuscation Techniques (CVE-2022-46888)
High	29 Mar 2023	29 Mar 2023	CPAI-2021-1456		CVE-2021-30497	Ivanti Avalanche Directory Traversal (CVE-2021-30497)
Medium	28 Mar 2023	28 Mar 2023	CPAI-2022-1386		CVE-2022-44268	ImageMagick Information Disclosure (CVE-2022-44268)
High	28 Mar 2023	28 Mar 2023	CPAI-2022-1387		CVE-2022-4223	PostgreSQL pgAdmin Command Injection (CVE-2022-4223)
High	27 Mar 2023	27 Mar 2023	CPAI-2018-2375		CVE-2018-8467	Microsoft Edge Memory Corruption (CVE-2018-8467)
Critical	27 Mar 2023	27 Mar 2023	CPAI-2020-3797		CVE-2020-7471	Django SQL Injection (CVE-2020-7471)
Medium	27 Mar 2023	27 Mar 2023	CPAI-2022-1384		CVE-2022-44267	ImageMagick Denial of Service (CVE-2022-44267)
High	27 Mar 2023	27 Mar 2023	CPAI-2022-1383		CVE-2022-21971	Microsoft Windows Remote Code Execution (CVE-2022-21971)
Critical	2 Mar 2023	27 Mar 2023	CPAI-2022-1316		CVE-2022-47986	IBM Aspera Faspex Remote Code Execution (CVE-2022-47986)
Critical	21 Mar 2023	26 Mar 2023	CPAI-2023-0146			Vulnerability Scanning Techniques
Medium	26 Mar 2023	26 Mar 2023	CPAI-2023-0142		CVE-2023-23752	Joomla! Authentication Bypass (CVE-2023-23752)
High	23 Mar 2023	23 Mar 2023	CPAI-2023-0062		CVE-2022-4153 CVE-2022-4156 CVE-2022-4158 CVE-2022-4159 CVE-2022-4160 CVE-2022-4161 CVE-2022-4162 CVE-2022-4163 CVE-2022-4164 CVE-2022-4165 CVE-2022-4166	WordPress Contest Gallery Plugin SQL Injection (CVE-2022-4153; CVE-2022-4156; CVE-2022-4158; CVE-2022-4159; CVE-2022-4160; CVE-2022-4161; CVE-2022-4162; CVE-2022-4163; CVE-2022-4164; CVE-2022-4165; CVE-2022-4166)
High	22 Mar 2023	22 Mar 2023	CPAI-2023-0135			Microsoft Windows NTLM Information Disclosure
High	22 Mar 2023	22 Mar 2023	CPAI-2023-0093			SSLv3 Deprecated Version
High	22 Mar 2023	22 Mar 2023	CPAI-2023-0092			TLSv1.1 Deprecated Version
High	22 Mar 2023	22 Mar 2023	CPAI-2023-0091			TLSv1.0 Deprecated Version
Critical	22 Mar 2023	22 Mar 2023	CPAI-2022-1045		CVE-2022-38916	Pagekit Arbitrary File Upload (CVE-2022-38916)
High	22 Mar 2023	22 Mar 2023	CPAI-2023-0140			WordPress Multiple Plugins Directory Traversal
Critical	21 Mar 2023	21 Mar 2023	CPAI-2019-2850		CVE-2019-7266 CVE-2019-7268	Linear eMerge Arbitrary File Upload (CVE-2019-7266; CVE-2019-7268)
High	21 Mar 2023	21 Mar 2023	CPAI-2022-1362		CVE-2022-45275	Dynamic Transaction Queuing System Arbitrary File Upload (CVE-2022-45275)
Critical	21 Mar 2023	21 Mar 2023	CPAI-2021-1680		CVE-2021-34427	Eclipse BIRT Unrestricted File Upload (CVE-2021-34427)
Critical	21 Mar 2023	21 Mar 2023	CPAI-2019-2842		CVE-2019-7267	Linear eMerge Path Traversal (CVE-2019-7267)
Critical	18 Jan 2023	21 Mar 2023	CPAI-2022-1128		CVE-2022-46169	Cacti Command Injection (CVE-2022-46169)
High	21 Mar 2023	21 Mar 2023	CPAI-2023-0143			Darkside Ransomware Phishing Email Campaign
High	21 Mar 2023	21 Mar 2023	CPAI-2023-0141			Dridex Phishing Email Campaign
Critical	21 Mar 2023	21 Mar 2023	CPAI-2020-3791		CVE-2020-10567	Responsive Filemanager Arbitrary File Upload (CVE-2020-10567)
High	21 Mar 2023	21 Mar 2023	CPAI-2023-0134			Emotet UPS Phishing Email Campaign
High	21 Mar 2023	21 Mar 2023	CPAI-2023-0133			Hancitor Phishing Email Campaign
Critical	21 Mar 2023	21 Mar 2023	CPAI-2019-2860		CVE-2019-7269	Linear eMerge Command Injection (CVE-2019-7269)
High	19 Mar 2023	19 Mar 2023	CPAI-2023-0139			WordPress Job Manager Plugin Arbitrary File Upload
Medium	19 Mar 2023	19 Mar 2023	CPAI-2017-1627		CVE-2017-5040	Google Chrome Information Disclosure (CVE-2017-5040)
Critical	19 Mar 2023	19 Mar 2023	CPAI-2022-1364		CVE-2022-39952	Fortinet FortiNAC Arbitrary File Write (CVE-2022-39952)
Critical	17 Mar 2023	17 Mar 2023	CPAI-2023-0144	Microsoft CVE-2023-23397	CVE-2023-23397	Microsoft Outlook Privilege Escalation (CVE-2023-23397)
High	5 Feb 2023	16 Mar 2023	CPAI-2023-0060			Google Chrome Integer Overflow
High	22 Jan 2023	16 Mar 2023	CPAI-2022-1141		CVE-2022-47966	Zoho ManageEngine Remote Code Execution (CVE-2022-47966)
High	16 Mar 2023	16 Mar 2023	CPAI-2023-0100	Microsoft CVE-2023-23416	CVE-2023-23416	Microsoft Windows Cryptographic Services Remote Code Execution (CVE-2023-23416)
High	28 Feb 2023	16 Mar 2023	CPAI-2020-3742		CVE-2020-6541	Google Chrome Use After Free (CVE-2020-6541)
Critical	15 Mar 2023	15 Mar 2023	CPAI-2019-2857		CVE-2019-13585	FANUC Robotics Virtual Robot Controller Buffer Overflow (CVE-2019-13585)
High	15 Mar 2023	15 Mar 2023	CPAI-2022-1322		CVE-2022-40127	Apache Airflow Command Injection (CVE-2022-40127)
High	26 Feb 2023	15 Mar 2023	CPAI-2022-1239		CVE-2022-46071 CVE-2022-46127 CVE-2022-46472 CVE-2022-46946 CVE-2022-46947 CVE-2022-46949	Helmet Store Showroom Site SQL injection (CVE-2022-46071; CVE-2022-46127; CVE-2022-46472; CVE-2022-46946; CVE-2022-46947; CVE-2022-46949)
High	15 Mar 2023	15 Mar 2023	CPAI-2022-1213		CVE-2022-4732	Microweber Project Path Traversal (CVE-2022-4732)
Critical	15 Mar 2023	15 Mar 2023	CPAI-2019-2755		CVE-2019-10123	AIS logistics SQL Injection (CVE-2019-10123)
Medium	14 Mar 2023	14 Mar 2023	CPAI-2023-0126	Microsoft CVE-2023-24880	CVE-2023-24880	Microsoft Windows SmartScreen Security Feature Bypass (CVE-2023-24880)