Home / 2026 Advisories Archive

2026 Advisories Archive

Sort By: 2025  2024  2023  2022  2021  2020  2019  2018  2017  2016  2015  2014  2013  2012  2011  2010  2009  2008  2007  2006  2005  2004  1999  1998  

Security Gateway R75 and above

Security Advisories Subscription



Severity Date Published Date Updated Check Point Reference Source Industry Reference Description
High 29 Jan 2026 29 Jan 2026 CPAI-2025-11523 CVE-2025-61686
 React Router Directory Traversal (CVE-2025-61686)
High 28 Jan 2026 28 Jan 2026 CPAI-2026-0547 CVE-2026-24061
 GNU Inetutils Argument Injection (CVE-2026-24061)
High 28 Jan 2026 28 Jan 2026 CPAI-2026-0551 CVE-2026-24423
 SmarterTools SmarterMail Remote Code Execution (CVE-2026-24423)
High 28 Jan 2026 28 Jan 2026 CPAI-2026-0559 CVE-2026-22218
 Chainlit Arbitrary File Read (CVE-2026-22218)
High 28 Jan 2026 28 Jan 2026 CPAI-2026-0557 CVE-2026-22219
 Chainlit Server-Side Request Forgery (CVE-2026-22219)
High 1 Jan 2026 27 Jan 2026 CPAI-2025-11461 CVE-2025-52691
 SmarterMail Arbitrary File Upload (CVE-2025-52691)
Critical 27 Jan 2026 27 Jan 2026 CPAI-2025-11454 CVE-2025-4443
 D-Link DIR-605L Command Injection (CVE-2025-4443)
Medium 27 Jan 2026 27 Jan 2026 CPAI-2025-11452 CVE-2025-1392
 D-Link DIR-816 Cross-Site Scripting (CVE-2025-1392)
High 22 Jan 2026 27 Jan 2026 CPAI-2026-0500 CVE-2026-23760
 SmarterTools SmarterMail Authentication Bypass (CVE-2026-23760)
High 22 Jan 2026 26 Jan 2026 CPAI-2026-0456 CVE-2026-23760
 SmarterTools SmarterMail Authentication Bypass (CVE-2026-23760)
Medium 26 Jan 2026 26 Jan 2026 CPAI-2025-11177 CVE-2025-34178
 pfSense Community Edition Cross-Site Scripting (CVE-2025-34178)
High 26 Jan 2026 26 Jan 2026 CPAI-2024-5278 CVE-2024-42756
 Netgear DGN1000WW Command Injection (CVE-2024-42756)
High 25 Jan 2026 25 Jan 2026 CPAI-2026-0424 CVE-2026-22755
 Vivotek Multiple Products Command Injection (CVE-2026-22755)
Critical 25 Jan 2026 25 Jan 2026 CPAI-2025-11284 CVE-2025-14139
CVE-2025-14140
CVE-2025-14141
CVE-2025-15459
CVE-2025-15460
CVE-2025-15461
CVE-2025-15462
 UTT 520W Buffer Overflow (CVE-2025-14139; CVE-2025-14140; CVE-2025-14141; CVE-2025-15459; CVE-2025-15460; CVE-2025-15461; CVE-2025-15462)
Critical 25 Jan 2026 25 Jan 2026 CPAI-2025-11305 CVE-2024-4965
CVE-2025-1800
 D-Link DAR-7000 Command Injection (CVE-2024-4965; CVE-2025-1800)
High 25 Jan 2026 25 Jan 2026 CPAI-2025-11307 CVE-2025-9745
 D-Link DI-500WF Command Injection (CVE-2025-9745)
High 25 Jan 2026 25 Jan 2026 CPAI-2026-0422 CVE-2026-1125
 D-Link DIR-823X Command Injection (CVE-2026-1125)
Critical 25 Jan 2026 25 Jan 2026 CPAI-2026-0432 CVE-2026-0581
 Tenda AC1206 Command Injection (CVE-2026-0581)
Critical 25 Jan 2026 25 Jan 2026 CPAI-2025-11265 CVE-2019-10999
CVE-2025-4841
CVE-2025-4842
CVE-2025-4843
 D-Link DCS Buffer Overflow (CVE-2019-10999; CVE-2025-4841; CVE-2025-4842; CVE-2025-4843)
Critical 25 Jan 2026 25 Jan 2026 CPAI-2026-0416 CVE-2026-0732
 D-Link DI-8200G Command Injection (CVE-2026-0732)
High 25 Jan 2026 25 Jan 2026 CPAI-2024-5263 CVE-2024-4236
 Tenda AX1803 Buffer Overflow (CVE-2024-4236)
High 25 Jan 2026 25 Jan 2026 CPAI-2025-11309 CVE-2025-2618
CVE-2025-2619
CVE-2025-2621
 D-Link DAP-1620 Buffer Overflow (CVE-2025-2618; CVE-2025-2619; CVE-2025-2621)
High 25 Jan 2026 25 Jan 2026 CPAI-2025-11261 CVE-2025-4749
CVE-2025-4750
CVE-2025-4751
CVE-2025-4752
CVE-2025-4753
CVE-2025-4756
CVE-2025-4904
 D-Link DI-7003GV2 Information Disclosure (CVE-2025-4749; CVE-2025-4750; CVE-2025-4751; CVE-2025-4752; CVE-2025-4753; CVE-2025-4756; CVE-2025-4904)
High 25 Jan 2026 25 Jan 2026 CPAI-2019-3549 CVE-2019-9513
 HTTP/2 Denial of Service (CVE-2019-9513)
High 1 Jan 2026 25 Jan 2026 CPAI-2025-11302 CVE-2025-68645
 Zimbra Collaboration Local File Inclusion (CVE-2025-68645)
High 22 Jan 2026 22 Jan 2026 CPAI-2026-0414 SmarterTools SmarterMail Authentication Bypass
High 22 Jan 2026 22 Jan 2026 CPAI-2025-11227 CVE-2025-10401
 D-Link DIR-823X Command Injection (CVE-2025-10401)
High 22 Jan 2026 22 Jan 2026 CPAI-2025-11229 CVE-2025-60021
 Apache bRPC Command Injection (CVE-2025-60021)
High 22 Jan 2026 22 Jan 2026 CPAI-2024-5248 CVE-2024-10916
CVE-2024-8460
 D-Link DNS Information Disclosure (CVE-2024-10916; CVE-2024-8460)
High 22 Jan 2026 22 Jan 2026 CPAI-2025-11155 CVE-2025-60344
 D-Link DSR Directory Traversal (CVE-2025-60344)
High 22 Jan 2026 22 Jan 2026 CPAI-2025-10876 CVE-2025-61808
 Adobe ColdFusion Unrestricted File Upload (CVE-2025-61808)
High 22 Jan 2026 22 Jan 2026 CPAI-2025-10873 CVE-2025-68493
 Apache Struts XML External Entity Injection (CVE-2025-68493)
Critical 21 Jan 2026 21 Jan 2026 CPAI-2025-11126 CVE-2025-1538
CVE-2025-1539
 D-Link DAP-1320 Buffer Overflow (CVE-2025-1538; CVE-2025-1539)
High 21 Jan 2026 21 Jan 2026 CPAI-2025-11133 CVE-2025-65007
CVE-2025-65009
CVE-2025-65010
CVE-2025-65011
 WODESYS WD-R608U Authentication Bypass (CVE-2025-65007; CVE-2025-65009; CVE-2025-65010; CVE-2025-65011)
High 21 Jan 2026 21 Jan 2026 CPAI-2025-11117 CVE-2025-65008
 WODESYS WD-R608U Command Injection (CVE-2025-65008)
High 21 Jan 2026 21 Jan 2026 CPAI-2025-10878 CVE-2025-10243
 Ivanti Endpoint Manager Mobile Command Injection (CVE-2025-10243)
High 21 Jan 2026 21 Jan 2026 CPAI-2025-11124 CVE-2025-64447
 Fortinet FortiWeb Authentication Bypass (CVE-2025-64447)
High 18 Jan 2026 21 Jan 2026 CPAI-2025-11134 CVE-2025-52694
 Advantech Multiple Products SQL Injection (CVE-2025-52694)
Critical 5 Jan 2026 20 Jan 2026 CPAI-2025-11049 CVE-2024-0536
CVE-2024-0537
CVE-2024-0538
CVE-2024-0539
CVE-2024-0540
CVE-2024-0542
CVE-2024-2980
CVE-2024-2981
CVE-2024-30587
CVE-2024-4240
CVE-2024-4241
CVE-2024-4242
CVE-2024-4243
CVE-2025-7529
 Embedded Devices Web Servers Buffer Overflow (CVE-2024-0536; CVE-2024-0537; CVE-2024-0538; CVE-2024-0539; CVE-2024-0540; CVE-2024-0542; CVE-2024-2980; CVE-2024-2981; CVE-2024-30587; CVE-2024-4240; CVE-2024-4241; CVE-2024-4242; CVE-2024-4243; CVE-2025-7529)
High 20 Jan 2026 20 Jan 2026 CPAI-2025-11055 CVE-2024-33345
CVE-2025-60332
 D-Link DIR-823G Denial of Service (CVE-2024-33345; CVE-2025-60332)
Critical 20 Jan 2026 20 Jan 2026 CPAI-2025-11036 CVE-2024-0571
CVE-2024-0572
CVE-2024-0573
CVE-2024-0574
CVE-2024-0575
CVE-2024-0576
CVE-2024-0577
CVE-2024-0578
CVE-2024-1783
CVE-2025-60684
CVE-2025-60688
 TOTOLINK Multiple Products Stack Overflow (CVE-2024-0571; CVE-2024-0572; CVE-2024-0573; CVE-2024-0574; CVE-2024-0575; CVE-2024-0576; CVE-2024-0577; CVE-2024-0578; CVE-2024-1783; CVE-2025-60684; CVE-2025-60688)
Critical 20 Jan 2026 20 Jan 2026 CPAI-2024-5220 CVE-2024-41285
 Suspicious Web Login Activity (CVE-2024-41285)
High 19 Jan 2026 20 Jan 2026 CPAI-2025-11041 CVE-2024-42941
CVE-2024-42943
CVE-2024-42951
CVE-2024-44386
CVE-2024-44387
CVE-2024-44390
CVE-2024-44859
CVE-2025-14994
 Tenda FH Buffer Overflow (CVE-2024-42941; CVE-2024-42943; CVE-2024-42951; CVE-2024-44386; CVE-2024-44387; CVE-2024-44390; CVE-2024-44859; CVE-2025-14994)
High 19 Jan 2026 19 Jan 2026 CPAI-2025-10990 CVE-2024-42941
CVE-2024-42943
CVE-2024-42951
CVE-2024-44859
CVE-2025-14994
 Tenda FH Buffer Overflow (CVE-2024-42941; CVE-2024-42943; CVE-2024-42951; CVE-2024-44859; CVE-2025-14994)
High 1 Jan 2026 19 Jan 2026 CPAI-2025-10668 CVE-2025-52691
 SmarterMail Arbitrary File Upload (CVE-2025-52691)
High 19 Jan 2026 19 Jan 2026 CPAI-2026-0321 CVE-2026-23550
 WordPress Modular DS Plugin Privilege Escalation (CVE-2026-23550)
High 19 Jan 2026 19 Jan 2026 CPAI-2025-10966 CVE-2025-56241
 Aztech DSL5005EN Authentication Bypass (CVE-2025-56241)
Medium 19 Jan 2026 19 Jan 2026 CPAI-2023-3183 CVE-2023-43770
 Roundcube Webmail Cross-Site Scripting (CVE-2023-43770)
High 19 Jan 2026 19 Jan 2026 CPAI-2025-10823 CVE-2025-68472
 MindsDB Directory Traversal (CVE-2025-68472)
High 19 Jan 2026 19 Jan 2026 CPAI-2025-10819 CVE-2025-15139
 TRENDnet TEW-822DRE Command Injection (CVE-2025-15139)
×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK