Home / 2025 Advisories Archive

2025 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Industry Reference	Description
Critical	19 Jun 2025	19 Jun 2025	CPAI-2025-0389	CVE-2025-27651 CVE-2025-27652	Vasion Print Server Side Request Forgery (CVE-2025-27651; CVE-2025-27652)
High	19 Jun 2025	19 Jun 2025	CPAI-2025-0372	CVE-2025-2760	GIMP Integer Overflow (CVE-2025-2760)
High	19 May 2025	19 Jun 2025	CPAI-2014-2667	CVE-2014-8500	ISC BIND Denial of Service (CVE-2014-8500)
Critical	9 Feb 2025	19 Jun 2025	CPAI-2024-1360	CVE-2024-37184 CVE-2024-39288 CVE-2024-39359 CVE-2024-39757 CVE-2024-39774	Wavlink AC3000 Buffer Overflow (CVE-2024-37184; CVE-2024-39288; CVE-2024-39359; CVE-2024-39757; CVE-2024-39774)
High	18 Jun 2025	18 Jun 2025	CPAI-2025-0444	CVE-2025-5503	TOTOLINK X15 Buffer Overflow (CVE-2025-5503)
Critical	18 Jun 2025	18 Jun 2025	CPAI-2023-2065	CVE-2023-6329	Control iD iDSecure Authentication Bypass (CVE-2023-6329)
High	18 Jun 2025	18 Jun 2025	CPAI-2024-1691	CVE-2024-22476	Intel Neural Compressor Privilege Escalation (CVE-2024-22476)
Medium	18 Jun 2025	18 Jun 2025	CPAI-2025-0311	CVE-2025-27892	Shopware SQL Injection (CVE-2025-27892)
High	22 May 2025	18 Jun 2025	CPAI-2015-1708	CVE-2015-2790	Foxit Software Multiple Products Memory Corruption (CVE-2015-2790)
Critical	18 Jun 2025	18 Jun 2025	CPAI-2018-2915	CVE-2018-17440	D-Link Central WiFiManager Hardcoded Credentials (CVE-2018-17440)
High	17 Jun 2025	17 Jun 2025	CPAI-2025-0439	CVE-2025-27817	Apache Kafka Information Disclosure (CVE-2025-27817)
High	17 Jun 2025	17 Jun 2025	CPAI-2024-1702	CVE-2024-6587	LiteLLM Server-Side Request Forgery (CVE-2024-6587)
High	17 Jun 2025	17 Jun 2025	CPAI-2024-1700	CVE-2024-33623	LevelOne WBR-6012 Denial of Service (CVE-2024-33623)
High	17 Jun 2025	17 Jun 2025	CPAI-2024-1698	CVE-2024-24777	LevelOne WBR-6012 Cross-Site Request Forgery (CVE-2024-24777)
Critical	29 Apr 2025	17 Jun 2025	CPAI-2024-1624	CVE-2024-57050	TP-Link WR840N Authentication Bypass (CVE-2024-57050)
High	16 Jun 2025	16 Jun 2025	CPAI-2025-0449	CVE-2025-5901	TOTOLINK T10 Buffer Overflow (CVE-2025-5901)
High	16 Jun 2025	16 Jun 2025	CPAI-2025-0448	CVE-2025-5904	TOTOLINK T10 Buffer Overflow (CVE-2025-5904)
High	16 Jun 2025	16 Jun 2025	CPAI-2025-0430	CVE-2025-5905	TOTOLINK T10 Buffer Overflow (CVE-2025-5905)
High	16 Jun 2025	16 Jun 2025	CPAI-2025-0429	CVE-2025-5903	TOTOLINK T10 Buffer Overflow (CVE-2025-5903)
High	16 Jun 2025	16 Jun 2025	CPAI-2025-0428	CVE-2025-5792	TOTOLINK EX1200T Firmware Buffer Overflow (CVE-2025-5792)
High	16 Jun 2025	16 Jun 2025	CPAI-2025-0427	CVE-2025-5902	TOTOLINK T10 Buffer Overflow (CVE-2025-5902)
High	16 Jun 2025	16 Jun 2025	CPAI-2025-0426	CVE-2025-5785	TOTOLINK X15 Buffer Overflow (CVE-2025-5785)
High	16 Jun 2025	16 Jun 2025	CPAI-2025-0425	CVE-2025-5786	TOTOLINK X15 Buffer Overflow (CVE-2025-5786)
High	16 Jun 2025	16 Jun 2025	CPAI-2025-0424	CVE-2025-5907	TOTOLINK EX1200T Buffer Overflow (CVE-2025-5907)
High	16 Jun 2025	16 Jun 2025	CPAI-2025-0423	CVE-2025-5739	TOTOLINK X15 Buffer Overflow (CVE-2025-5739)
High	16 Jun 2025	16 Jun 2025	CPAI-2025-0422	CVE-2025-5853	Tenda Ac6 Firmware Buffer Overflow (CVE-2025-5853)
Medium	16 Jun 2025	16 Jun 2025	CPAI-2025-0421	CVE-2025-5447	Linksys Multiple Products Command Injection (CVE-2025-5447)
High	16 Jun 2025	16 Jun 2025	CPAI-2025-0420	CVE-2025-5850	Tenda AC15 Firmware Buffer Overflow (CVE-2025-5850)
Medium	16 Jun 2025	16 Jun 2025	CPAI-2025-0419	CVE-2025-5438	Linksys Multiple Products Command Injection (CVE-2025-5438)
High	16 Jun 2025	16 Jun 2025	CPAI-2024-1699	CVE-2024-6802	SourceCodester Computer Laboratory Management System SQL Injection (CVE-2024-6802)
Critical	16 Jun 2025	16 Jun 2025	CPAI-2025-0403	CVE-2025-30065	Apache Parquet Insecure Deserialization (CVE-2025-30065)
High	16 Jun 2025	16 Jun 2025	CPAI-2025-0398	CVE-2025-4883	D-Link DI-8100 Buffer Overflow (CVE-2025-4883)
Critical	16 Jun 2025	16 Jun 2025	CPAI-2025-0397	CVE-2025-32375	BentoML Insecure Deserialization (CVE-2025-32375)
High	16 Jun 2025	16 Jun 2025	CPAI-2025-0377	CVE-2025-4123	Grafana Path Traversal (CVE-2025-4123)
High	26 Jan 2025	16 Jun 2025	CPAI-2024-1313	CVE-2024-53457	LibreNMS Stored Cross-Site Scripting (CVE-2024-53457)
Critical	15 Jun 2025	15 Jun 2025	CPAI-2025-0412	CVE-2025-49001	DataEase Authentication Bypass (CVE-2025-49001)
Critical	15 Jun 2025	15 Jun 2025	CPAI-2025-0411	CVE-2025-47188	Mitel Multiple Products Command Injection (CVE-2025-47188)
High	15 Jun 2025	15 Jun 2025	CPAI-2025-0406	CVE-2025-5787	TOTOLINK X15 firmware Buffer Overflow (CVE-2025-5787)
High	15 Jun 2025	15 Jun 2025	CPAI-2025-0438	CVE-2025-5788	TOTOLINK X15 firmware Buffer Overflow (CVE-2025-5788)
High	15 Jun 2025	15 Jun 2025	CPAI-2025-0437	CVE-2025-5790	TOTOLINK X15 firmware Buffer Overflow (CVE-2025-5790)
High	15 Jun 2025	15 Jun 2025	CPAI-2023-2067	CVE-2023-27584	Dragonfly Hardcoded Credentials (CVE-2023-27584)
High	15 Jun 2025	15 Jun 2025	CPAI-2025-0401	CVE-2025-5861	Tenda AC7 Firmware Buffer Overflow (CVE-2025-5861)
Medium	15 Jun 2025	15 Jun 2025	CPAI-2025-0399	CVE-2025-46631	Tenda RX2 Improper Access Control (CVE-2025-46631)
Medium	3 Jun 2025	15 Jun 2025	CPAI-2025-0355	CVE-2025-3577	Zyxel AMG1302-T10B Directory Traversal (CVE-2025-3577)
Critical	29 May 2025	15 Jun 2025	CPAI-2025-0341	CVE-2025-45779	Tenda AC10 Buffer Overflow (CVE-2025-45779)
Medium	20 Apr 2025	15 Jun 2025	CPAI-2024-1605	CVE-2024-45598	Cacti Remote Code Execution (CVE-2024-45598)
High	15 Apr 2025	15 Jun 2025	CPAI-2024-1577	CVE-2024-54146	Cacti SQL Injection (CVE-2024-54146)
Critical	30 Mar 2025	15 Jun 2025	CPAI-2025-0112	CVE-2025-0890	Zyxel VMG4325-B10A Authentication Bypass(CVE-2025-0890)
High	3 Apr 2025	15 Jun 2025	CPAI-2024-1499	CVE-2024-30081	Microsoft Windows Spoofing (CVE-2024-30081)
Critical	24 Feb 2025	15 Jun 2025	CPAI-2024-1421	CVE-2024-29974	Zyxel NAS326 firmware Remote Code Execution (CVE-2024-29974)