Home / 2024 Advisories Archive

2024 Advisories Archive

Sort By: 2024  2023  2022  2021  2020  2019  2018  2017  2016  2015  2014  2013  2012  2011  2010  2009  2008  2007  2006  2005  2004  1999  1998  

Security Gateway R75 and above

Security Advisories Subscription



Severity Date Published Date Updated Check Point Reference Source Industry Reference Description
Critical 2 Jul 2024 15 Oct 2024 CPAI-2024-0542 CVE-2024-37032
 Ollama Directory Traversal (CVE-2024-37032)
High 14 Oct 2024 14 Oct 2024 CPAI-2023-1916 CVE-2023-44860
 Netis Systems N3M Denial of Service (CVE-2023-44860)
High 14 Oct 2024 14 Oct 2024 CPAI-2024-0942 CVE-2024-5016
 Progress WhatsUp Gold Insecure Deserialization (CVE-2024-5016)
High 14 Oct 2024 14 Oct 2024 CPAI-2024-0940 CVE-2024-7855
 WordPress Hotel Booking Plugin Arbitrary File Upload (CVE-2024-7855)
High 14 Oct 2024 14 Oct 2024 CPAI-2020-4203 CVE-2020-25078
 D-Link DCS-2530L Authentication Bypass (CVE-2020-25078)
High 14 Oct 2024 14 Oct 2024 CPAI-2023-1915 CVE-2023-29804
 I-O DATA WFS-SR03W Command Injection (CVE-2023-29804)
Critical 14 Oct 2024 14 Oct 2024 CPAI-2024-0936 CVE-2024-20017
 MediaTek Multiple Products Buffer Overflow (CVE-2024-20017)
High 14 Oct 2024 14 Oct 2024 CPAI-2017-1937 CVE-2017-9946
 Siemens Muiltiple Products Information Disclosure (CVE-2017-9946)
High 14 Oct 2024 14 Oct 2024 CPAI-2024-0928 CVE-2024-5565
 Vanna Remote Code Execution (CVE-2024-5565)
Critical 14 Oct 2024 14 Oct 2024 CPAI-2024-0912 CVE-2024-44087
 Siemens Automation License Manager Denial of Service (CVE-2024-44087)
High 14 Oct 2024 14 Oct 2024 CPAI-2024-0908 CVE-2024-46313
 TP-Link WR941ND Stack Overflow (CVE-2024-46313)
High 14 Oct 2024 14 Oct 2024 CPAI-2023-1909 CVE-2023-1163
CVE-2023-6265
 DrayTek Vigor2960 Directory Traversal (CVE-2023-1163; CVE-2023-6265)
Medium 14 Oct 2024 14 Oct 2024 CPAI-2024-0873 CVE-2024-27564
 OpenAI ChatGPT Server-Side Request Forgery (CVE-2024-27564)
Critical 8 Aug 2024 14 Oct 2024 CPAI-2021-2201 CVE-2021-21887
CVE-2021-21889
CVE-2021-21890
CVE-2021-21891
CVE-2021-21892
 Lantronix PremierWave 2050 Buffer Overflow (CVE-2021-21887; CVE-2021-21889; CVE-2021-21890; CVE-2021-21891; CVE-2021-21892)
Critical 29 Feb 2024 14 Oct 2024 CPAI-2023-1557 CVE-2023-24343
CVE-2023-24344
CVE-2023-24345
CVE-2023-24346
CVE-2023-24347
CVE-2023-24348
CVE-2023-24349
CVE-2023-24350
CVE-2023-24351
CVE-2023-24352
CVE-2024-9514
CVE-2024-9515
CVE-2024-9532
CVE-2024-9533
 D-Link DIR-605L Buffer Overflow (CVE-2023-24343; CVE-2023-24344; CVE-2023-24345; CVE-2023-24346; CVE-2023-24347; CVE-2023-24348; CVE-2023-24349; CVE-2023-24350; CVE-2023-24351; CVE-2023-24352; CVE-2024-9514; CVE-2024-9515; CVE-2024-9532; CVE-2024-9533)
Critical 18 Jan 2024 14 Oct 2024 CPAI-2024-0016 CVE-2024-21887
 Ivanti Command Injection (CVE-2024-21887)
Medium 13 Oct 2024 13 Oct 2024 CPAI-2020-4204 CVE-2020-2140
 Jenkins Audit Trail Plugin Cross-Site Scripting (CVE-2020-2140)
Critical 13 Oct 2024 13 Oct 2024 CPAI-2024-0944 CVE-2024-46419
CVE-2024-46451
 TOTOLINK AC1200 Buffer Overflow (CVE-2024-46419; CVE-2024-46451)
Critical 13 Oct 2024 13 Oct 2024 CPAI-2024-0935 CVE-2024-8275
 WordPress The Events Calendar Plugin SQL Injection (CVE-2024-8275)
Medium 13 Oct 2024 13 Oct 2024 CPAI-2022-2135 CVE-2022-45362
 WordPress Paytm Payment Gateway Plugin Server-Side Request Forgery (CVE-2022-45362)
Critical 13 Oct 2024 13 Oct 2024 CPAI-2024-0923 CVE-2024-29847
 Ivanti Endpoint Manager Insecure Deserialization (CVE-2024-29847)
High 13 Oct 2024 13 Oct 2024 CPAI-2024-0914 CVE-2024-8669
 WordPress Softaculous Backuply Plugin SQL Injection (CVE-2024-8669)
Critical 13 Oct 2024 13 Oct 2024 CPAI-2021-2220 CVE-2021-40323
 Cobbler Project Cobbler Remote Code Execution (CVE-2021-40323)
High 13 Oct 2024 13 Oct 2024 CPAI-2021-2219 CVE-2021-40324
 Cobbler Project Cobbler Arbitrary File Write (CVE-2021-40324)
Critical 13 Oct 2024 13 Oct 2024 CPAI-2020-4200 CVE-2020-17523
 Apache Shiro Authentication Bypass (CVE-2020-17523)
Critical 29 Aug 2024 13 Oct 2024 CPAI-2021-2207 CVE-2021-33045
 Dahua Security Multiple Products Authentication Bypass (CVE-2021-33045)
High 10 Oct 2024 10 Oct 2024 CPAI-2024-0952 CVE-2024-9466
 Palo Alto Networks Expedition Information Disclosure (CVE-2024-9466)
High 10 Oct 2024 10 Oct 2024 CPAI-2024-0947 CVE-2024-9464
 Palo Alto Networks Expedition Command Injection (CVE-2024-9464)
Critical 10 Oct 2024 10 Oct 2024 CPAI-2024-0945 CVE-2024-37404
 Ivanti Remote Code Execution (CVE-2024-37404)
High 10 Oct 2024 10 Oct 2024 CPAI-2024-0927 CVE-2024-36728
 TRENDnet TEW-827DRU Buffer Overflow (CVE-2024-36728)
Medium 10 Oct 2024 10 Oct 2024 CPAI-2023-1914 CVE-2023-52085
 Winter CMS Local File Inclusion (CVE-2023-52085)
Critical 8 Oct 2024 10 Oct 2024 CPAI-2024-0918 CVE-2024-45519
 Zimbra Collaboration Remote Command Execution (CVE-2024-45519)
High 10 Oct 2024 10 Oct 2024 CPAI-2016-1387 CVE-2016-0742
 F5 Nginx Denial of Service (CVE-2016-0742)
Critical 27 Jun 2024 10 Oct 2024 CPAI-2023-1809 CVE-2023-4873
CVE-2023-5684
CVE-2023-6575
CVE-2023-7039
 Byzoro Multiple Products SQL Injection (CVE-2023-4873; CVE-2023-5684; CVE-2023-6575; CVE-2023-7039)
Critical 7 Mar 2024 10 Oct 2024 CPAI-2022-2028 CVE-2020-10973
CVE-2020-12127
CVE-2022-31847
CVE-2022-34045
CVE-2022-34046
CVE-2022-34047
CVE-2022-34049
CVE-2022-34576
CVE-2022-48165
 Wavlink Routers Authentication Bypass (CVE-2020-10973; CVE-2020-12127; CVE-2022-31847; CVE-2022-34045; CVE-2022-34046; CVE-2022-34047; CVE-2022-34049; CVE-2022-34576; CVE-2022-48165)
Medium 8 Oct 2024 9 Oct 2024 CPAI-2024-0920 Microsoft CVE-2024-43573 CVE-2024-43573
 Microsoft Windows MSHTML Platform Spoofing (CVE-2024-43573)
High 8 Oct 2024 8 Oct 2024 CPAI-2024-0917 Microsoft CVE-2024-43560 CVE-2024-43560
 Microsoft Windows Storage Port Driver Elevation of Privilege (CVE-2024-43560)
High 8 Oct 2024 8 Oct 2024 CPAI-2024-0896 Microsoft CVE-2024-43502 CVE-2024-43502
 Microsoft Windows Kernel Elevation of Privilege (CVE-2024-43502)
High 8 Oct 2024 8 Oct 2024 CPAI-2024-0905 CVE-2024-7856
 WordPress Sonaar MP3 Audio Player Plugin Arbitrary File Deletion (CVE-2024-7856)
High 7 Oct 2024 7 Oct 2024 CPAI-2016-1391 CVE-2016-8740
 Apache HTTP Server Denial-of-Service (CVE-2016-8740)
High 7 Oct 2024 7 Oct 2024 CPAI-2024-0916 Aruba 501 Command Injection
Critical 7 Oct 2024 7 Oct 2024 CPAI-2024-0890 CVE-2024-46628
 Tenda G3 Command Injection (CVE-2024-46628)
Critical 7 Oct 2024 7 Oct 2024 CPAI-2024-0877 CVE-2024-46048
 Tenda FH451 Command Injection (CVE-2024-46048)
Critical 7 Oct 2024 7 Oct 2024 CPAI-2024-0820 CVE-2024-42009
 Roundcube Webmail Cross-Site Scripting (CVE-2024-42009)
High 9 Sep 2024 7 Oct 2024 CPAI-2024-0739 CVE-2024-22263
 VMware Spring Cloud Data Flow Directory Traversal (CVE-2024-22263)
Critical 5 Aug 2024 7 Oct 2024 CPAI-2023-1859 CVE-2023-6612
CVE-2024-42737
CVE-2024-42738
CVE-2024-42739
 TOTOLINK X5000R Command Injection (CVE-2023-6612; CVE-2024-42737; CVE-2024-42738; CVE-2024-42739)
High 7 Oct 2024 7 Oct 2024 CPAI-2015-1608 CVE-2015-0203
CVE-2015-0224
 Apache Qpid Denial of Service (CVE-2015-0203; CVE-2015-0224)
Critical 7 Mar 2024 7 Oct 2024 CPAI-2023-1556 CVE-2023-24150
CVE-2023-24151
CVE-2023-24152
CVE-2023-24153
CVE-2023-24156
CVE-2023-24157
CVE-2024-8574
 TOTOLINK T8 Command Injection (CVE-2023-24150; CVE-2023-24151; CVE-2023-24152; CVE-2023-24153; CVE-2023-24156; CVE-2023-24157; CVE-2024-8574)
Medium 6 Oct 2024 6 Oct 2024 CPAI-2024-0904 CVE-2024-21645
 PyLoad Log Injection (CVE-2024-21645)
High 6 Oct 2024 6 Oct 2024 CPAI-2024-0899 CVE-2024-41107
 Apache CloudStack Authentication Bypass (CVE-2024-41107)
×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK