Home / 2026 Advisories Archive

2026 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Industry Reference	Description
High	8 Feb 2026	8 Feb 2026	CPAI-2025-11713	CVE-2025-4365	Citrix NetScaler Console Arbitrary File Read (CVE-2025-4365)
Medium	8 Feb 2026	8 Feb 2026	CPAI-2024-5329	CVE-2024-13106	D-Link DIR-816 Information Disclosure (CVE-2024-13106)
Critical	28 Jan 2026	8 Feb 2026	CPAI-2026-0685	CVE-2026-24423	SmarterTools SmarterMail Remote Code Execution (CVE-2026-24423)
High	5 Feb 2026	5 Feb 2026	CPAI-2025-11912	CVE-2025-56005	Python Lex-Yacc Remote Code Execution (CVE-2025-56005)
Critical	5 Feb 2026	5 Feb 2026	CPAI-2025-11907	CVE-2025-6916 CVE-2025-7862	TOTOLINK T6 Authentication Bypass (CVE-2025-6916; CVE-2025-7862)
High	5 Feb 2026	5 Feb 2026	CPAI-2025-11875	CVE-2025-65212	NJHYST HY511 Authentication Bypass (CVE-2025-65212)
High	5 Feb 2026	5 Feb 2026	CPAI-2025-11879	CVE-2025-25948	Serosoft Solutions Academia SIS Authentication Bypass (CVE-2025-25948)
Critical	5 Feb 2026	5 Feb 2026	CPAI-2025-11918	CVE-2025-4341	D-Link DIR-880L Command Injection (CVE-2025-4341)
Critical	29 Jan 2026	5 Feb 2026	CPAI-2025-11919	CVE-2025-40551	SolarWinds Web Help Desk Insecure Deserialization (CVE-2025-40551)
Critical	29 Jan 2026	4 Feb 2026	CPAI-2025-11829	CVE-2025-40551	SolarWinds Web Help Desk Insecure Deserialization (CVE-2025-40551)
Critical	4 Feb 2026	4 Feb 2026	CPAI-2025-11512	CVE-2025-12420	ServiceNow Multiple Products Authentication Bypass (CVE-2025-12420)
High	3 Feb 2026	3 Feb 2026	CPAI-2026-0541	CVE-2026-20947	Microsoft SharePoint Server SQL Injection (CVE-2026-20947)
High	3 Feb 2026	3 Feb 2026	CPAI-2025-11513	CVE-2025-7086	Belkin F9K1122 Stack Overflow (CVE-2025-7086)
High	3 Feb 2026	3 Feb 2026	CPAI-2025-11511	CVE-2025-7087	Belkin F9K1122 Stack Overflow (CVE-2025-7087)
High	3 Feb 2026	3 Feb 2026	CPAI-2025-11510	CVE-2025-5623	D-Link DIR-816 Stack Overflow (CVE-2025-5623)
High	3 Feb 2026	3 Feb 2026	CPAI-2025-11509	CVE-2025-7089	Belkin F9K1122 Stack Overflow (CVE-2025-7089)
High	3 Feb 2026	3 Feb 2026	CPAI-2025-11508	CVE-2025-7088	Belkin F9K1122 Stack Overflow (CVE-2025-7088)
High	3 Feb 2026	3 Feb 2026	CPAI-2025-11506	CVE-2025-61678	FreePBX Endpoint Manager Arbitrary File Upload (CVE-2025-61678)
High	3 Feb 2026	3 Feb 2026	CPAI-2025-11739	CVE-2025-60687	TOTOLINK LR1200GB Command Injection (CVE-2025-60687)
High	3 Feb 2026	3 Feb 2026	CPAI-2026-0477	CVE-2026-1419	D-Link DCS-700L Command Injection (CVE-2026-1419)
High	3 Feb 2026	3 Feb 2026	CPAI-2025-11426	CVE-2025-7083	Belkin F9K1122 Command Injection (CVE-2025-7083)
High	3 Feb 2026	3 Feb 2026	CPAI-2025-11733	CVE-2025-15472	TRENDnet TEW-811DRU Command Injection (CVE-2025-15472)
High	3 Feb 2026	3 Feb 2026	CPAI-2025-11744	CVE-2025-55847	Wavlink WL-WN586X3A Buffer Overflow (CVE-2025-55847)
Critical	3 Feb 2026	3 Feb 2026	CPAI-2025-11735	CVE-2016-5649 CVE-2025-4977 CVE-2025-4980	Netgear DGN Information Disclosure (CVE-2016-5649; CVE-2025-4977; CVE-2025-4980)
High	14 Jan 2026	2 Feb 2026	CPAI-2025-11707	CVE-2025-8110	Gogs Remote Code Execution (CVE-2025-8110)
Medium	2 Feb 2026	2 Feb 2026	CPAI-2024-5322	CVE-2024-31456	GLPI SQL Injection (CVE-2024-31456)
Medium	2 Feb 2026	2 Feb 2026	CPAI-2023-3206	CVE-2023-41323	GLPI Information Disclosure (CVE-2023-41323)
High	2 Feb 2026	2 Feb 2026	CPAI-2024-5321	CVE-2024-37148	GLPI SQL Injection (CVE-2024-37148)
Critical	2 Feb 2026	2 Feb 2026	CPAI-2023-3205	CVE-2023-41320	GLPI SQL Injection (CVE-2023-41320)
Medium	2 Feb 2026	2 Feb 2026	CPAI-2024-5320	CVE-2024-50339	GLPI Information Disclosure (CVE-2024-50339)
High	2 Feb 2026	2 Feb 2026	CPAI-2024-5319	CVE-2024-40638	GLPI SQL Injection (CVE-2024-40638)
Medium	2 Feb 2026	2 Feb 2026	CPAI-2024-5318	CVE-2024-27937	GLPI Information Disclosure (CVE-2024-27937)
Critical	2 Feb 2026	2 Feb 2026	CPAI-2024-5317	CVE-2024-27098	GLPI Server-Side Request Forgery (CVE-2024-27098)
High	2 Feb 2026	2 Feb 2026	CPAI-2023-3204	CVE-2023-41326	GLPI Privilege Escalation (CVE-2023-41326)
High	2 Feb 2026	2 Feb 2026	CPAI-2024-5316	CVE-2024-29889	GLPI SQL Injection (CVE-2024-29889)
High	2 Feb 2026	2 Feb 2026	CPAI-2024-5315	CVE-2024-37149	GLPI Remote Code Execution (CVE-2024-37149)
High	2 Feb 2026	2 Feb 2026	CPAI-2023-3203	CVE-2023-43813	GLPI SQL Injection (CVE-2023-43813)
Medium	2 Feb 2026	2 Feb 2026	CPAI-2024-5314	CVE-2024-27096	GLPI SQL Injection (CVE-2024-27096)
Critical	2 Feb 2026	2 Feb 2026	CPAI-2020-4533	CVE-2020-15175	GLPI Information Disclosure (CVE-2020-15175)
High	2 Feb 2026	2 Feb 2026	CPAI-2025-11531	CVE-2025-5965	Centreon Web Command Injection (CVE-2025-5965)
High	2 Feb 2026	2 Feb 2026	CPAI-2025-11527	CVE-2025-32786	GLPI Inventory Plugin SQL Injection (CVE-2025-32786)
Medium	2 Feb 2026	2 Feb 2026	CPAI-2026-0561	CVE-2026-20872	Microsoft Windows Spoofing (CVE-2026-20872)
High	2 Feb 2026	2 Feb 2026	CPAI-2025-11690	CVE-2025-15229	Tenda CH22 Denial of Service (CVE-2025-15229)
Critical	2 Feb 2026	2 Feb 2026	CPAI-2025-11684	CVE-2025-10323 CVE-2025-10324 CVE-2025-10325 CVE-2025-10358 CVE-2025-10359	Wavlink WL-WN578W2 Command Injection (CVE-2025-10323; CVE-2025-10324; CVE-2025-10325; CVE-2025-10358; CVE-2025-10359)
High	2 Feb 2026	2 Feb 2026	CPAI-2025-11677	CVE-2025-10321 CVE-2025-10322	Wavlink WL-WN578W2 Information Disclosure (CVE-2025-10321; CVE-2025-10322)
High	2 Feb 2026	2 Feb 2026	CPAI-2025-11697	CVE-2025-2547 CVE-2025-2548 CVE-2025-2549 CVE-2025-2550 CVE-2025-2551 CVE-2025-2552 CVE-2025-2553	D-Link DIR Improper Access Control (CVE-2025-2547; CVE-2025-2548; CVE-2025-2549; CVE-2025-2550; CVE-2025-2551; CVE-2025-2552; CVE-2025-2553)
High	2 Feb 2026	2 Feb 2026	CPAI-2025-11700	CVE-2025-6440	WordPress WooCommerce Designer Pro Plugin Arbitrary File Upload (CVE-2025-6440)
Critical	2 Feb 2026	2 Feb 2026	CPAI-2025-11687	CVE-2025-4999 CVE-2025-5000	Linksys FGW3000 Command Injection (CVE-2025-4999; CVE-2025-5000)
High	2 Feb 2026	2 Feb 2026	CPAI-2025-11694	CVE-2023-37758 CVE-2025-6328	D-Link DIR-815 Buffer Overflow (CVE-2023-37758; CVE-2025-6328)
High	28 Jan 2026	2 Feb 2026	CPAI-2026-0646	CVE-2026-24061	GNU Inetutils Argument Injection (CVE-2026-24061)