Home / 2025 Advisories Archive

2025 Advisories Archive

Sort By: 2025  2024  2023  2022  2021  2020  2019  2018  2017  2016  2015  2014  2013  2012  2011  2010  2009  2008  2007  2006  2005  2004  1999  1998  

Security Gateway R75 and above

Security Advisories Subscription



Severity Date Published Date Updated Check Point Reference Source Industry Reference Description
High 20 Feb 2025 20 Feb 2025 CPAI-2021-2296 CVE-2021-27030
 Autodesk FBX Review Directory Traversal (CVE-2021-27030)
Critical 19 Feb 2025 19 Feb 2025 CPAI-2025-0043 CVE-2014-0130
CVE-2015-3035
CVE-2016-4523
CVE-2019-20085
CVE-2020-5410
CVE-2023-2825
CVE-2023-32315
CVE-2023-34843
CVE-2023-34990
CVE-2023-35843
CVE-2023-35844
CVE-2023-37607
CVE-2023-41266
CVE-2024-57727
 Web Servers Directory Traversal (CVE-2014-0130; CVE-2015-3035; CVE-2016-4523; CVE-2019-20085; CVE-2020-5410; CVE-2023-2825; CVE-2023-32315; CVE-2023-34843; CVE-2023-34990; CVE-2023-35843; CVE-2023-35844; CVE-2023-37607; CVE-2023-41266; CVE-2024-57727)
High 18 Feb 2025 18 Feb 2025 CPAI-2024-1394 CVE-2024-37569
CVE-2024-37570
 Mitel 6869i Command Injection (CVE-2024-37569; CVE-2024-37570)
High 18 Feb 2025 18 Feb 2025 CPAI-2024-1372 CVE-2024-57357
 TP-Link TL-WPA 8630 Command Injection (CVE-2024-57357)
High 17 Feb 2025 17 Feb 2025 CPAI-2025-0041 CVE-2025-1094
 PostgreSQL SQL Injection (CVE-2025-1094)
Medium 16 Feb 2025 16 Feb 2025 CPAI-2024-1377 CVE-2024-54502
 Apple Multiple Products Use After Free (CVE-2024-54502)
Critical 13 Feb 2025 13 Feb 2025 CPAI-2024-1393 CVE-2024-9916
 HuangDou UTCMS Command Injection (CVE-2024-9916)
High 13 Feb 2025 13 Feb 2025 CPAI-2024-1383 CVE-2024-45518
 Zimbra Collaboration Server-Side Request Forgery (CVE-2024-45518)
High 13 Feb 2025 13 Feb 2025 CPAI-2024-1366 CVE-2024-47008
 Ivanti Avalanche Server-Side Request Forgery (CVE-2024-47008)
Critical 12 Feb 2025 12 Feb 2025 CPAI-2025-0035 Microsoft CVE-2025-21376 CVE-2025-21376
 Microsoft Windows LDAP Remote Code Execution (CVE-2025-21376)
Medium 12 Feb 2025 12 Feb 2025 CPAI-2023-1995 CVE-2023-6065
 WordPress Quttera Web Malware Scanner Plugin Information Disclosure (CVE-2023-6065)
High 10 Feb 2025 10 Feb 2025 CPAI-2024-1355 CVE-2024-55417
 PHP Voyager Package Arbitrary File Upload (CVE-2024-55417)
High 9 Feb 2025 9 Feb 2025 CPAI-2024-1363 CVE-2024-38653
 Ivanti Avalanche XML External Entity Injection (CVE-2024-38653)
High 9 Feb 2025 9 Feb 2025 CPAI-2024-1353 CVE-2024-55416
 PHP Voyager Package Cross-Site Scripting (CVE-2024-55416)
High 9 Feb 2025 9 Feb 2025 CPAI-2024-1352 CVE-2024-55415
 PHP Voyager Package Path Traversal (CVE-2024-55415)
High 6 Feb 2025 6 Feb 2025 CPAI-2024-1327 CVE-2024-28726
 D-Link DWR-2000M Command Injection (CVE-2024-28726)
Medium 4 Feb 2025 4 Feb 2025 CPAI-2025-0015 Nagios Enterprises Nagios XI Command Injection
Critical 3 Feb 2025 3 Feb 2025 CPAI-2024-1325 CVE-2024-11972
 WordPress Hunk Companion Plugin Authentication Bypass (CVE-2024-11972)
Critical 2 Feb 2025 2 Feb 2025 CPAI-2024-1333 CVE-2024-45507
 Apache OFBiz Server-Side Request Forgery (CVE-2024-45507)
Medium 29 Jan 2025 29 Jan 2025 CPAI-2024-1324 CVE-2024-45826
 Rockwell Automation ThinManager Directory Traversal (CVE-2024-45826)
Critical 29 Jan 2025 29 Jan 2025 CPAI-2024-1317 CVE-2024-4320
 LoLLMs WebUI Path Traversal (CVE-2024-4320)
Critical 29 Jan 2025 29 Jan 2025 CPAI-2024-1312 CVE-2024-57684
 D-Link DIR-816 Authentication Bypass (CVE-2024-57684)
Critical 29 Jan 2025 29 Jan 2025 CPAI-2024-1291 CVE-2024-11773
 Ivanti Cloud Services Appliance SQL Injection (CVE-2024-11773)
High 20 Jan 2025 28 Jan 2025 CPAI-2024-1230 CVE-2024-47007
CVE-2024-50317
CVE-2024-50318
CVE-2024-50319
CVE-2024-50321
 Ivanti Avalanche Denial of Service (CVE-2024-47007; CVE-2024-50317; CVE-2024-50318; CVE-2024-50319; CVE-2024-50321)
High 27 Jan 2025 27 Jan 2025 CPAI-2024-1316 CVE-2024-50326
 Ivanti Endpoint Manager SQL Injection (CVE-2024-50326)
High 23 Jan 2025 23 Jan 2025 CPAI-2024-1319 CVE-2024-49112
 Microsoft Windows LDAP Remote Code Execution (CVE-2024-49112)
High 23 Jan 2025 23 Jan 2025 CPAI-2024-1304 CVE-2024-51818
 WordPress Fancy Product Designer Plugin SQL Injection (CVE-2024-51818)
High 23 Jan 2025 23 Jan 2025 CPAI-2024-1295 CVE-2024-43452
 Microsoft Windows Privilege Escalation (CVE-2024-43452)
Medium 23 Jan 2025 23 Jan 2025 CPAI-2024-1290 CVE-2024-34787
 Ivanti Endpoint Manager Directory Traversal (CVE-2024-34787)
Critical 20 Jan 2025 20 Jan 2025 CPAI-2024-1246 CVE-2024-9932
 WordPress Wux Blog Editor Plugin Arbitrary File Upload (CVE-2024-9932)
Critical 20 Jan 2025 20 Jan 2025 CPAI-2023-1985 CVE-2023-31446
 Cassia Network Gateway Command Injection (CVE-2023-31446)
Critical 20 Jan 2025 20 Jan 2025 CPAI-2024-1239 CVE-2024-3552
 WordPress SalePHPscripts Web Directory Free Plugin SQL Injection (CVE-2024-3552)
High 16 Jan 2025 16 Jan 2025 CPAI-2024-1250 CVE-2024-43464
 Microsoft SharePoint Server Remote Code Execution (CVE-2024-43464)
Medium 16 Jan 2025 16 Jan 2025 CPAI-2024-1242 CVE-2024-0881
 WordPress Combo Blocks Plugin Authentication Bypass (CVE-2024-0881)
Critical 16 Jan 2025 16 Jan 2025 CPAI-2023-1983 CVE-2023-4521
 WordPress Moove Import XML and RSS Feeds Plugin Remote Code Execution (CVE-2023-4521)
Critical 16 Jan 2025 16 Jan 2025 CPAI-2024-1231 CVE-2024-8856
 WordPress Time Capsule Plugin Remote Code Execution (CVE-2024-8856)
High 16 Jan 2025 16 Jan 2025 CPAI-2024-1227 CVE-2024-21182
 Oracle WebLogic Server Remote Code Execution (CVE-2024-21182)
High 15 Jan 2025 15 Jan 2025 CPAI-2024-1241 CVE-2024-54819
 I Librarian Server-Side Request Forgery (CVE-2024-54819)
Medium 15 Jan 2025 15 Jan 2025 CPAI-2024-1233 CVE-2024-12343
 TP-Link VN020 F3v Buffer Overflow (CVE-2024-12343)
Medium 15 Jan 2025 15 Jan 2025 CPAI-2021-2280 CVE-2021-24202
CVE-2021-24203
 WordPress Elementor Website Builder Plugin Cross-Site Scripting (CVE-2021-24202; CVE-2021-24203)
High 15 Jan 2025 15 Jan 2025 CPAI-2024-1102 CVE-2024-10387
 Rockwell Automation ThinManager ThinServer Out-Of-Bounds Read (CVE-2024-10387)
Medium 15 Jan 2025 15 Jan 2025 CPAI-2024-1081 CVE-2024-10386
 Rockwell Automation ThinManager Authentication Bypass (CVE-2024-10386)
High 13 Jan 2025 13 Jan 2025 CPAI-2024-1234 CVE-2024-13129
 Roxy-WI Command Injection (CVE-2024-13129)
High 12 Jan 2025 12 Jan 2025 CPAI-2023-1984 CVE-2023-5003
 Active Directory / LDAP Integration WordPress Plugin Information Disclosure (CVE-2023-5003)
High 12 Jan 2025 12 Jan 2025 CPAI-2023-1981 CVE-2023-20888
 VMware VRealize Network Insight Insecure Deserialization (CVE-2023-20888)
Medium 12 Jan 2025 12 Jan 2025 CPAI-2024-1228 CVE-2024-2340
 Avada Information Disclosure (CVE-2024-2340)
Medium 1 Jan 2025 12 Jan 2025 CPAI-2024-1188 CVE-2024-5458
 PHP Authentication Bypass (CVE-2024-5458)
Medium 12 Jan 2025 12 Jan 2025 CPAI-2024-1170 CVE-2024-54003
 Jenkins Simple Queue Plugin Cross-Site Scripting (CVE-2024-54003)
High 12 Jan 2025 12 Jan 2025 CPAI-2024-1237 CVE-2024-32848
 Ivanti Endpoint Manager SQL Injection (CVE-2024-32848)
High 12 Jan 2025 12 Jan 2025 CPAI-2024-1229 CVE-2024-34779
 Ivanti Endpoint Manager SQL Injection (CVE-2024-34779)
×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK