Home / 2023 Advisories Archive

2023 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
Critical	30 Apr 2023	8 May 2023	CPAI-2021-1712		CVE-2021-3781	Artifex Ghostscript Command Injection (CVE-2021-3781)
Medium	8 May 2023	8 May 2023	CPAI-2022-1506		CVE-2022-36097	XWiki Remote Code Execution (CVE-2022-36097)
Critical	8 May 2023	8 May 2023	CPAI-2023-0270		CVE-2021-44152	Reprise License Manager Authentication Bypass (CVE-2021-44152)
Medium	8 May 2023	8 May 2023	CPAI-2022-1505		CVE-2022-4069	LibreNMS Cross-Site Scripting (CVE-2022-4069)
Critical	8 May 2023	8 May 2023	CPAI-2021-1711		CVE-2021-40531	Sketch Remote Code Execution (CVE-2021-40531)
Medium	8 May 2023	8 May 2023	CPAI-2021-1739		CVE-2021-27907	Apache Superset Cross-Site Scripting (CVE-2021-27907)
High	8 May 2023	8 May 2023	CPAI-2018-2390		CVE-2018-16286	LG SuperSign CMS Authentication Bypass (CVE-2018-16286)
High	7 May 2023	7 May 2023	CPAI-2022-1495		CVE-2022-41773	Delta DIAEnergie SQL Injection (CVE-2022-41773)
High	7 May 2023	7 May 2023	CPAI-2022-1490		CVE-2022-4230	WordPress VeronaLabs WP Statistics Plugin SQL Injection (CVE-2022-4230)
High	7 May 2023	7 May 2023	CPAI-2022-1475		CVE-2022-25813	Apache OFBiz Remote Code Execution (CVE-2022-25813)
High	7 May 2023	7 May 2023	CPAI-2023-0296		CVE-2023-1658	Contec CONPROSYS HMI System CPostgreSQL.php SQL Injection (CVE-2023-1658)
Medium	7 May 2023	7 May 2023	CPAI-2022-1489		CVE-2022-43568	Splunk Cross-Site Scripting (CVE-2022-43568)
High	7 May 2023	7 May 2023	CPAI-2022-1501		CVE-2022-40967	Delta DIAEnergie SQL Injection (CVE-2022-40967)
High	7 May 2023	7 May 2023	CPAI-2022-1474		CVE-2022-2560	EnterpriseDT CompleteFTP Server HttpFile Arbitrary File Deletion (CVE-2022-2560)
Critical	7 May 2023	7 May 2023	CPAI-2022-1494		CVE-2022-36094	XWiki Remote Code Execution (CVE-2022-36094)
Medium	7 May 2023	7 May 2023	CPAI-2022-1488		CVE-2022-41702	Delta DIAEnergie Cross-Site Scripting (CVE-2022-41702)
High	7 May 2023	7 May 2023	CPAI-2022-1500		CVE-2022-40770	Zoho Corp ManageEngine ServiceDesk Plus Command Injection (CVE-2022-40770)
Medium	7 May 2023	7 May 2023	CPAI-2021-1727		CVE-2021-39906	GitLab Remote Code Execution (CVE-2021-39906)
High	7 May 2023	7 May 2023	CPAI-2021-1734		CVE-2021-45010	Tiny File Manager Directory Traversal (CVE-2021-45010)
Medium	7 May 2023	7 May 2023	CPAI-2022-1487		CVE-2022-40965	Delta DIAEnergie Cross-Site Scripting (CVE-2022-40965)
Critical	7 May 2023	7 May 2023	CPAI-2022-1499		CVE-2022-43672	Zoho Corp ManageEngine SQL Injection (CVE-2022-43672)
Critical	7 May 2023	7 May 2023	CPAI-2021-1726		CVE-2021-26120	Smarty Remote Code Execution (CVE-2021-26120)
High	7 May 2023	7 May 2023	CPAI-2021-1733		CVE-2021-31558	Delta Industrial Automation DIAEnergie Cross-Site Scripting (CVE-2021-31558)
High	7 May 2023	7 May 2023	CPAI-2020-3816		CVE-2020-16267	Zoho Corp ManageEngine Applications Manager SQL Injection (CVE-2020-16267)
High	7 May 2023	7 May 2023	CPAI-2021-1736		CVE-2021-27276	NETGEAR ProSAFE Network Management System Denial of Service (CVE-2021-27276)
High	7 May 2023	7 May 2023	CPAI-2022-1473		CVE-2022-2138	Advantech iView Denial of Service (CVE-2022-2138)
High	7 May 2023	7 May 2023	CPAI-2021-1732		CVE-2021-35478	Nagios Log Server Audit Log And Alert History Cross-Site Scripting (CVE-2021-35478)
Medium	7 May 2023	7 May 2023	CPAI-2023-0294		CVE-2023-25762	Jenkins Pipeline: Build Step Plugin Cross-Site Scripting (CVE-2023-25762)
Critical	7 May 2023	7 May 2023	CPAI-2022-1498		CVE-2022-26013	Delta DIAEnergie SQL Injection (CVE-2022-26013)
High	7 May 2023	7 May 2023	CPAI-2022-1472		CVE-2022-22149	Lansweeper SQL Injection (CVE-2022-22149)
Critical	7 May 2023	7 May 2023	CPAI-2022-1492		CVE-2022-43774	Delta DIAEnergie SQL Injection (CVE-2022-43774)
High	7 May 2023	7 May 2023	CPAI-2022-1485		CVE-2022-42427	Centreon Web formContactGroup.php SQL Injection (CVE-2022-42427)
Medium	7 May 2023	7 May 2023	CPAI-2021-1735		CVE-2021-35590	Oracle MySQL Cluster Remote Code Execution (CVE-2021-35590)
Critical	11 Apr 2023	7 May 2023	CPAI-2023-0216	Microsoft CVE-2023-21554	CVE-2023-21554	Microsoft Message Queuing Remote Code Execution (CVE-2023-21554)
High	7 May 2023	7 May 2023	CPAI-2021-1731		CVE-2021-23282	Eaton Intelligent Power Management2 Stored Cross-Site Scripting (CVE-2021-23282)
Medium	7 May 2023	7 May 2023	CPAI-2021-1730		CVE-2021-25919	OpenEMR Cross-Site Scripting (CVE-2021-25919)
Medium	7 May 2023	7 May 2023	CPAI-2022-1497		CVE-2022-30690	WWBN AVideo Cross-Site Scripting (CVE-2022-30690)
Critical	7 May 2023	7 May 2023	CPAI-2022-1491		CVE-2022-36981	Ivanti Avalanche SmartDeviceServer DeviceLogResource Directory Traversal (CVE-2022-36981)
Critical	7 May 2023	7 May 2023	CPAI-2022-1484		CVE-2022-38130	Keysight Sensor Management Server Remote Code Execution (CVE-2022-38130)
Medium	7 May 2023	7 May 2023	CPAI-2022-1496		CVE-2022-45783	DotCMS Directory Traversal (CVE-2022-45783)
High	7 May 2023	7 May 2023	CPAI-2020-3817		CVE-2020-2871	Oracle Advanced Outbound Telephony Remote Code Execution (CVE-2020-2871)
Medium	7 May 2023	7 May 2023	CPAI-2023-0293		CVE-2023-22458	Redis Denial of Service (CVE-2023-22458)
High	7 May 2023	7 May 2023	CPAI-2023-0297		CVE-2023-29516	XWiki Remote Code Execution (CVE-2023-29516)
High	7 May 2023	7 May 2023	CPAI-2023-0295		CVE-2023-27253	Netgate pfSense Command Injection (CVE-2023-27253)
High	7 May 2023	7 May 2023	CPAI-2020-3815		CVE-2020-15419	Veeam ONE Firmware XML External Entity Injection (CVE-2020-15419)
Medium	4 May 2023	4 May 2023	CPAI-2022-1469		CVE-2022-28731	Apache JSPWiki Cross-Site Request Forgery (CVE-2022-28731)
Medium	4 May 2023	4 May 2023	CPAI-2022-1462		CVE-2022-39810	WSO2 Enterprise Integrator Cross-Site Scripting (CVE-2022-39810)
Critical	4 May 2023	4 May 2023	CPAI-2023-0269		CVE-2023-30547	vm2 Remote Code Execution (CVE-2023-30547)
High	4 May 2023	4 May 2023	CPAI-2021-1722		CVE-2021-22719	Schneider Electric C-Bus Toolkit Directory Traversal (CVE-2021-22719)
High	4 May 2023	4 May 2023	CPAI-2021-1718		CVE-2021-22654	Advantech iView SQL Injection (CVE-2021-22654)