Home / 2026 Advisories Archive

2026 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Industry Reference	Description
High	3 Feb 2026	3 Feb 2026	CPAI-2025-11509	CVE-2025-7089	Belkin F9K1122 Stack Overflow (CVE-2025-7089)
High	3 Feb 2026	3 Feb 2026	CPAI-2025-11508	CVE-2025-7088	Belkin F9K1122 Stack Overflow (CVE-2025-7088)
High	3 Feb 2026	3 Feb 2026	CPAI-2025-11506	CVE-2025-61678	FreePBX Endpoint Manager Arbitrary File Upload (CVE-2025-61678)
High	3 Feb 2026	3 Feb 2026	CPAI-2025-11739	CVE-2025-60687	TOTOLINK LR1200GB Command Injection (CVE-2025-60687)
High	3 Feb 2026	3 Feb 2026	CPAI-2026-0477	CVE-2026-1419	D-Link DCS-700L Command Injection (CVE-2026-1419)
High	3 Feb 2026	3 Feb 2026	CPAI-2025-11426	CVE-2025-7083	Belkin F9K1122 Command Injection (CVE-2025-7083)
High	3 Feb 2026	3 Feb 2026	CPAI-2025-11733	CVE-2025-15472	TRENDnet TEW-811DRU Command Injection (CVE-2025-15472)
High	3 Feb 2026	3 Feb 2026	CPAI-2025-11744	CVE-2025-55847	Wavlink WL-WN586X3A Buffer Overflow (CVE-2025-55847)
Critical	3 Feb 2026	3 Feb 2026	CPAI-2025-11735	CVE-2016-5649 CVE-2025-4977 CVE-2025-4980	Netgear DGN Information Disclosure (CVE-2016-5649; CVE-2025-4977; CVE-2025-4980)
High	14 Jan 2026	2 Feb 2026	CPAI-2025-11707	CVE-2025-8110	Gogs Remote Code Execution (CVE-2025-8110)
Medium	2 Feb 2026	2 Feb 2026	CPAI-2024-5322	CVE-2024-31456	GLPI SQL Injection (CVE-2024-31456)
Medium	2 Feb 2026	2 Feb 2026	CPAI-2023-3206	CVE-2023-41323	GLPI Information Disclosure (CVE-2023-41323)
High	2 Feb 2026	2 Feb 2026	CPAI-2024-5321	CVE-2024-37148	GLPI SQL Injection (CVE-2024-37148)
Critical	2 Feb 2026	2 Feb 2026	CPAI-2023-3205	CVE-2023-41320	GLPI SQL Injection (CVE-2023-41320)
Medium	2 Feb 2026	2 Feb 2026	CPAI-2024-5320	CVE-2024-50339	GLPI Information Disclosure (CVE-2024-50339)
High	2 Feb 2026	2 Feb 2026	CPAI-2024-5319	CVE-2024-40638	GLPI SQL Injection (CVE-2024-40638)
Medium	2 Feb 2026	2 Feb 2026	CPAI-2024-5318	CVE-2024-27937	GLPI Information Disclosure (CVE-2024-27937)
Critical	2 Feb 2026	2 Feb 2026	CPAI-2024-5317	CVE-2024-27098	GLPI Server-Side Request Forgery (CVE-2024-27098)
High	2 Feb 2026	2 Feb 2026	CPAI-2023-3204	CVE-2023-41326	GLPI Privilege Escalation (CVE-2023-41326)
High	2 Feb 2026	2 Feb 2026	CPAI-2024-5316	CVE-2024-29889	GLPI SQL Injection (CVE-2024-29889)
High	2 Feb 2026	2 Feb 2026	CPAI-2024-5315	CVE-2024-37149	GLPI Remote Code Execution (CVE-2024-37149)
High	2 Feb 2026	2 Feb 2026	CPAI-2023-3203	CVE-2023-43813	GLPI SQL Injection (CVE-2023-43813)
Medium	2 Feb 2026	2 Feb 2026	CPAI-2024-5314	CVE-2024-27096	GLPI SQL Injection (CVE-2024-27096)
Critical	2 Feb 2026	2 Feb 2026	CPAI-2020-4533	CVE-2020-15175	GLPI Information Disclosure (CVE-2020-15175)
High	2 Feb 2026	2 Feb 2026	CPAI-2025-11531	CVE-2025-5965	Centreon Web Command Injection (CVE-2025-5965)
High	2 Feb 2026	2 Feb 2026	CPAI-2025-11527	CVE-2025-32786	GLPI Inventory Plugin SQL Injection (CVE-2025-32786)
Medium	2 Feb 2026	2 Feb 2026	CPAI-2026-0561	CVE-2026-20872	Microsoft Windows Spoofing (CVE-2026-20872)
High	2 Feb 2026	2 Feb 2026	CPAI-2025-11690	CVE-2025-15229	Tenda CH22 Denial of Service (CVE-2025-15229)
Critical	2 Feb 2026	2 Feb 2026	CPAI-2025-11684	CVE-2025-10323 CVE-2025-10324 CVE-2025-10325 CVE-2025-10358 CVE-2025-10359	Wavlink WL-WN578W2 Command Injection (CVE-2025-10323; CVE-2025-10324; CVE-2025-10325; CVE-2025-10358; CVE-2025-10359)
High	2 Feb 2026	2 Feb 2026	CPAI-2025-11677	CVE-2025-10321 CVE-2025-10322	Wavlink WL-WN578W2 Information Disclosure (CVE-2025-10321; CVE-2025-10322)
High	2 Feb 2026	2 Feb 2026	CPAI-2025-11697	CVE-2025-2547 CVE-2025-2548 CVE-2025-2549 CVE-2025-2550 CVE-2025-2551 CVE-2025-2552 CVE-2025-2553	D-Link DIR Improper Access Control (CVE-2025-2547; CVE-2025-2548; CVE-2025-2549; CVE-2025-2550; CVE-2025-2551; CVE-2025-2552; CVE-2025-2553)
High	2 Feb 2026	2 Feb 2026	CPAI-2025-11700	CVE-2025-6440	WordPress WooCommerce Designer Pro Plugin Arbitrary File Upload (CVE-2025-6440)
Critical	2 Feb 2026	2 Feb 2026	CPAI-2025-11687	CVE-2025-4999 CVE-2025-5000	Linksys FGW3000 Command Injection (CVE-2025-4999; CVE-2025-5000)
High	2 Feb 2026	2 Feb 2026	CPAI-2025-11694	CVE-2023-37758 CVE-2025-6328	D-Link DIR-815 Buffer Overflow (CVE-2023-37758; CVE-2025-6328)
High	28 Jan 2026	2 Feb 2026	CPAI-2026-0646	CVE-2026-24061	GNU Inetutils Argument Injection (CVE-2026-24061)
Critical	1 Feb 2026	1 Feb 2026	CPAI-2026-0624	CVE-2026-1281 CVE-2026-1340	Ivanti Endpoint Manager Mobile Command Injection (CVE-2026-1281; CVE-2026-1340)
High	1 Feb 2026	1 Feb 2026	CPAI-2026-0628		Oracle Servers Remote Code Execution
High	1 Jan 2026	1 Feb 2026	CPAI-2025-11623	CVE-2025-52691	SmarterTools SmarterMail Arbitrary File Upload (CVE-2025-52691)
High	29 Jan 2026	1 Feb 2026	CPAI-2025-11607	CVE-2025-15467	OpenSSL Stack Overflow (CVE-2025-15467)
High	29 Jan 2026	30 Jan 2026	CPAI-2025-11603	CVE-2025-15467	OpenSSL Stack Overflow (CVE-2025-15467)
High	29 Jan 2026	29 Jan 2026	CPAI-2025-11585	CVE-2025-15467	OpenSSL Stack Overflow (CVE-2025-15467)
High	29 Jan 2026	29 Jan 2026	CPAI-2025-11595	CVE-2025-40536	SolarWinds Web Help Desk Authentication Bypass (CVE-2025-40536)
Critical	29 Jan 2026	29 Jan 2026	CPAI-2025-11589	CVE-2025-40551	SolarWinds Web Help Desk Insecure Deserialization (CVE-2025-40551)
High	29 Jan 2026	29 Jan 2026	CPAI-2026-0577		Cisco Multiple Products Command Injection
High	29 Jan 2026	29 Jan 2026	CPAI-2024-5258	CVE-2024-1728	Gradio Directory Traversal (CVE-2024-1728)
High	29 Jan 2026	29 Jan 2026	CPAI-2025-11253	CVE-2025-49388	WordPress Miraculous Core Plugin Privilege Escalation (CVE-2025-49388)
High	29 Jan 2026	29 Jan 2026	CPAI-2024-5254	CVE-2024-4325	Gradio Server-Side Request Forgery (CVE-2024-4325)
Critical	29 Jan 2026	29 Jan 2026	CPAI-2024-5255	CVE-2024-32964	LobeHub Lobe Chat Server-Side Request Forgery (CVE-2024-32964)
High	29 Jan 2026	29 Jan 2026	CPAI-2025-11241	CVE-2025-10985	Ivanti Endpoint Manager Mobile Command Injection (CVE-2025-10985)
High	29 Jan 2026	29 Jan 2026	CPAI-2025-11237	CVE-2025-6978	Arista Diagnostics Command Injection (CVE-2025-6978)