Home / 2026 Advisories Archive

2026 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Industry Reference	Description
Medium	12 May 2026	12 May 2026	CPAI-2025-16020	CVE-2025-22037	Linux Kernel Denial of Service (CVE-2025-22037)
High	7 May 2026	12 May 2026	CPAI-2026-4375	CVE-2026-7567	WordPress Temporary Login Plugin Authentication Bypass (CVE-2026-7567)
High	5 Apr 2026	12 May 2026	CPAI-2026-4400	CVE-2026-20841	Microsoft Windows Notepad Command Injection (CVE-2026-20841)
High	11 May 2026	11 May 2026	CPAI-2026-4368		IKE Unsigned Underflow
High	11 May 2026	11 May 2026	CPAI-2025-16017	CVE-2025-13878	ISC BIND Denial of Service (CVE-2025-13878)
Critical	23 Mar 2026	11 May 2026	CPAI-2026-2170	CVE-2026-33017	Langflow Remote Code Execution (CVE-2026-33017)
High	24 Mar 2026	11 May 2026	CPAI-2026-3336	CVE-2026-21643	Fortinet FortiClientEMS SQL Injection (CVE-2026-21643)
Critical	30 Apr 2026	10 May 2026	CPAI-2026-4245	CVE-2026-42208	LiteLLM SQL Injection (CVE-2026-42208)
Medium	10 May 2026	10 May 2026	CPAI-2026-4262	CVE-2026-27822	RustFS Cross-Site Scripting (CVE-2026-27822)
High	10 May 2026	10 May 2026	CPAI-2024-6772	CVE-2024-7297	Langflow Privilege Escalation (CVE-2024-7297)
High	10 May 2026	10 May 2026	CPAI-2026-4244	CVE-2026-34222	Open WebUI Authentication Bypass (CVE-2026-34222)
High	10 May 2026	10 May 2026	CPAI-2025-16003	CVE-2025-59456	JetBrains TeamCity Directory Traversal (CVE-2025-59456)
High	10 May 2026	10 May 2026	CPAI-2025-16005	CVE-2025-23121	Veeam Backup and Replication Remote Code Execution (CVE-2025-23121)
High	10 May 2026	10 May 2026	CPAI-2026-4008	CVE-2026-0769	Langflow Remote Code Execution (CVE-2026-0769)
High	10 May 2026	10 May 2026	CPAI-2025-15895	CVE-2025-5959	Google Chrome Type Confusion (CVE-2025-5959)
High	10 May 2026	10 May 2026	CPAI-2026-3992	CVE-2026-5204	Tenda CH22 Stack Overflow (CVE-2026-5204)
High	10 May 2026	10 May 2026	CPAI-2025-15882	CVE-2025-14765	Google Chrome Use After Free (CVE-2025-14765)
High	10 May 2026	10 May 2026	CPAI-2026-4251	CVE-2026-21509	Microsoft Multiple Products Security Bypass (CVE-2026-21509)
Critical	6 May 2026	10 May 2026	CPAI-2026-4267		Palo Alto Networks PAN-OS Buffer Overflow
High	7 May 2026	7 May 2026	CPAI-2026-4162	CVE-2026-7567	WordPress Temporary Login Plugin Authentication Bypass (CVE-2026-7567)
High	7 May 2026	7 May 2026	CPAI-2025-15915	CVE-2025-20352	Cisco Multiple Products Stack Overflow (CVE-2025-20352)
High	7 May 2026	7 May 2026	CPAI-2026-4157	CVE-2026-22679	Weaver E-cology Remote Code Execution (CVE-2026-22679)
High	7 May 2026	7 May 2026	CPAI-2026-4129	CVE-2026-32955 CVE-2026-32956	Silex Technology Multiple Products Buffer Overflow (CVE-2026-32955; CVE-2026-32956)
Medium	7 May 2026	7 May 2026	CPAI-2007-0899	CVE-2007-1122	ZephyrSoft Toolbox Address Book Continued SQL Injection (CVE-2007-1122)
Critical	7 May 2026	7 May 2026	CPAI-2026-4142	CVE-2026-1709	Keylime Authentication Bypass (CVE-2026-1709)
Critical	6 May 2026	6 May 2026	CPAI-2026-4116	CVE-2026-0300	Palo Alto Networks PAN-OS Buffer Overflow (CVE-2026-0300)
Critical	6 May 2026	6 May 2026	CPAI-2026-4122		Palo Alto Networks PAN-OS Buffer Overflow
High	6 May 2026	6 May 2026	CPAI-2025-15866	CVE-2025-54768	Xorux LPAR2RRD Information Disclosure (CVE-2025-54768)
High	6 May 2026	6 May 2026	CPAI-2025-15864	CVE-2025-54765	Xorux Xormon Privilege Escalation (CVE-2025-54765)
High	6 May 2026	6 May 2026	CPAI-2025-15910	CVE-2025-34510	Sitecore Multiple Products Directory Traversal (CVE-2025-34510)
High	2 Feb 2026	6 May 2026	CPAI-2025-15908	CVE-2025-5965	Centreon Web Command Injection (CVE-2025-5965)
High	5 May 2026	5 May 2026	CPAI-2025-15833	CVE-2025-54766	Xorux Xormon Information Disclosure (CVE-2025-54766)
High	5 May 2026	5 May 2026	CPAI-2025-15825	CVE-2025-32873	Django Denial of Service (CVE-2025-32873)
High	5 May 2026	5 May 2026	CPAI-2026-3932	CVE-2026-40321	DNN Software Cross-Site Scripting (CVE-2026-40321)
High	5 May 2026	5 May 2026	CPAI-2025-15831	CVE-2025-54767	Xorux LPAR2RRD Privilege Escalation (CVE-2025-54767)
High	30 Mar 2026	5 May 2026	CPAI-2025-15846	CVE-2025-1240	WinZip Out Of Bounds Write (CVE-2025-1240)
High	4 May 2026	4 May 2026	CPAI-2026-3886	CVE-2026-20180	Cisco Identity Services Engine Directory Traversal (CVE-2026-20180)
High	4 May 2026	4 May 2026	CPAI-2026-3907	CVE-2026-23696	Windmill SQL Injection (CVE-2026-23696)
High	4 May 2026	4 May 2026	CPAI-2025-15770	CVE-2025-0434	Google Chrome Heap Corruption (CVE-2025-0434)
High	4 May 2026	4 May 2026	CPAI-2025-15772	CVE-2025-8677	ISC BIND Denial Of Service (CVE-2025-8677)
High	30 Apr 2026	4 May 2026	CPAI-2026-3893	CVE-2026-41940	cPanel Authentication Bypass (CVE-2026-41940)
High	3 May 2026	3 May 2026	CPAI-2026-3593	CVE-2026-27305	Adobe ColdFusion Directory Traversal (CVE-2026-27305)
High	3 May 2026	3 May 2026	CPAI-2026-3591	CVE-2026-33824	Microsoft Windows IKE Extension Use After Free (CVE-2026-33824)
High	3 May 2026	3 May 2026	CPAI-2006-0804	CVE-2006-6478	ScriptPHP AnnonceScriptHP SQL Injection (CVE-2006-6478)
High	30 Apr 2026	30 Apr 2026	CPAI-2026-3800	CVE-2026-41940	cPanel Authentication Bypass (CVE-2026-41940)
High	30 Apr 2026	30 Apr 2026	CPAI-2026-3798	CVE-2026-42208	LiteLLM SQL Injection (CVE-2026-42208)
High	30 Apr 2026	30 Apr 2026	CPAI-2026-3778	CVE-2026-3854	GitHub Enterprise Server Remote Code Execution (CVE-2026-3854)
High	30 Apr 2026	30 Apr 2026	CPAI-2026-3805	CVE-2026-3965 CVE-2026-4047	Whyour Qinglong Authentication Bypass (CVE-2026-3965; CVE-2026-4047)
High	30 Apr 2026	30 Apr 2026	CPAI-2026-3803	CVE-2026-6770	Mozilla Multiple Products Information Disclosure (CVE-2026-6770)
Medium	30 Apr 2026	30 Apr 2026	CPAI-2026-3422	CVE-2026-40343	free5GC Insecure Deserialization (CVE-2026-40343)