2024 Advisories Archive

Severity Date Published Date Updated Check Point Reference Source Industry Reference Description
Critical 19 Nov 2024 20 Nov 2024 CPAI-2024-1075 CVE-2024-9474
Palo Alto Networks PAN-OS Command Injection (CVE-2024-9474)
High 20 Nov 2024 20 Nov 2024 CPAI-2024-1070 CVE-2024-10924
WordPress Really Simple Security Plugin Authentication Bypass (CVE-2024-10924)
Critical 19 Nov 2024 19 Nov 2024 CPAI-2024-1076 CVE-2024-0012
Palo Alto Networks PAN-OS Authentication Bypass (CVE-2024-0012)
Critical 31 Mar 2024 19 Nov 2024 CPAI-2024-0143 CVE-2024-1212
Kemp LoadMaster LMOS Command Injection (CVE-2024-1212)
High 19 Nov 2024 19 Nov 2024 CPAI-2011-0793 CVE-2011-1865
HP OpenView Storage Data Protector Buffer Overflow (CVE-2011-1865)
Critical 10 Apr 2024 19 Nov 2024 CPAI-2024-0179 CVE-2024-10914
CVE-2024-10915
CVE-2024-3272
CVE-2024-3273
D-Link DNS Series Command Injection (CVE-2024-10914; CVE-2024-10915; CVE-2024-3272; CVE-2024-3273)
Critical 18 Nov 2024 18 Nov 2024 CPAI-2024-0959 CVE-2024-42008
Roundcube Webmail Cross-Site Scripting (CVE-2024-42008)
Critical 9 Jun 2024 18 Nov 2024 CPAI-2024-0389 CVE-2024-1800
CVE-2024-4358
Progress Telerik Report Server Remote Code Execution (CVE-2024-1800; CVE-2024-4358)
High 6 Jun 2024 18 Nov 2024 CPAI-2024-0348 CVE-2024-4367
PDF.js Cross-Site Scripting (CVE-2024-436723)
High 13 Oct 2024 17 Nov 2024 CPAI-2024-0954 CVE-2024-9463
Palo Alto Networks Expedition Command Injection (CVE-2024-9463)
Critical 10 Oct 2024 17 Nov 2024 CPAI-2024-0949 CVE-2024-9465
Palo Alto Networks Expedition SQL Injection (CVE-2024-9465)
High 13 Nov 2024 13 Nov 2024 CPAI-2024-1064 CVE-2024-8068
CVE-2024-8069
Citrix Session Recording Remote Code Execution (CVE-2024-8068; CVE-2024-8069)
High 6 Oct 2024 13 Nov 2024 CPAI-2024-0892 CVE-2024-44844
CVE-2024-44845
CVE-2024-45885
CVE-2024-45889
CVE-2024-46316
CVE-2024-51254
CVE-2024-51255
CVE-2024-51257
CVE-2024-51258
CVE-2024-51259
CVE-2024-51260
CVE-2024-51296
CVE-2024-51298
CVE-2024-51299
DrayTek Vigor3900 Command Injection (CVE-2024-44844; CVE-2024-44845; CVE-2024-45885; CVE-2024-45889; CVE-2024-46316; CVE-2024-51254; CVE-2024-51255; CVE-2024-51257; CVE-2024-51258; CVE-2024-51259; CVE-2024-51260; CVE-2024-51296; CVE-2024-51298; CVE-2024-51299)
High 13 Nov 2024 13 Nov 2024 CPAI-2024-1051 CVE-2024-36136
Ivanti Avalanche Denial of Service (CVE-2024-36136)
Medium 13 Nov 2024 13 Nov 2024 CPAI-2019-3233 CVE-2019-6110
CVE-2019-6111
OpenSSH Arbitrary File Write (CVE-2019-6111; CVE-2019-6110)
High 12 Nov 2024 12 Nov 2024 CPAI-2024-1058 Microsoft CVE-2024-43642 CVE-2024-43642
Microsoft Windows SMB Denial of Service (CVE-2024-43642)
High 12 Nov 2024 12 Nov 2024 CPAI-2024-1033 Microsoft CVE-2024-43629 CVE-2024-43629
Microsoft Windows DWM Core Library Elevation of Privilege (CVE-2024-43629)
High 12 Nov 2024 12 Nov 2024 CPAI-2024-1032 Microsoft CVE-2024-43630 CVE-2024-43630
Microsoft Windows Kernel Elevation of Privilege (CVE-2024-43630)
High 12 Nov 2024 12 Nov 2024 CPAI-2024-1031 Microsoft CVE-2024-43623 CVE-2024-43623
Microsoft Windows NT OS Kernel Elevation of Privilege (CVE-2024-43623)
High 11 Nov 2024 11 Nov 2024 CPAI-2024-1022 SOC Security Scanner
High 11 Nov 2024 11 Nov 2024 CPAI-2024-1016 CVE-2024-45844
F5 BIG-IP Privilege Escalation (CVE-2024-45844)
Critical 15 Oct 2024 11 Nov 2024 CPAI-2024-0962 CVE-2024-8963
Ivanti Cloud Services Appliance Path Traversal (CVE-2024-8963)
Critical 27 Oct 2024 11 Nov 2024 CPAI-2020-4202 CVE-2020-12124
WAVLINK WN530H4 Command Injection (CVE-2020-12124)
Critical 1 Oct 2024 11 Nov 2024 CPAI-2024-0895 CVE-2024-47176
CVE-2024-47177
CUPS cups-browsed Remote Code Execution (CVE-2024-47176; CVE-2024-47177)
High 17 Sep 2024 11 Nov 2024 CPAI-2024-0831 CVE-2024-8190
Ivanti Cloud Services Appliance Command Injection (CVE-2024-8190)
High 9 Sep 2024 11 Nov 2024 CPAI-2024-0727 CVE-2024-37383
RoundCube Webmail Stored Cross-Site Scripting (CVE-2024-37383)
Critical 10 Nov 2024 10 Nov 2024 CPAI-2024-1034 CVE-2024-32238
H3C ER8300G2-X Information Disclosure (CVE-2024-32238)
High 10 Nov 2024 10 Nov 2024 CPAI-2024-1039 CVE-2024-34785
Ivanti Endpoint Manager SQL Injection (CVE-2024-34785)
Critical 10 Oct 2024 10 Nov 2024 CPAI-2024-0943 CVE-2024-5910
Palo Alto Networks Expedition Authentication Bypass (CVE-2024-5910)
Critical 5 Sep 2024 10 Nov 2024 CPAI-2024-0772 CVE-2024-6670
CVE-2024-6671
Progress Software WhatsUp Gold SQL Injection (CVE-2024-6670; CVE-2024-6671)
Critical 20 Aug 2024 10 Nov 2024 CPAI-2024-0711 CVE-2024-7120
Raisecom Devices Command Injection (CVE-2024-7120)
High 10 Jul 2024 10 Nov 2024 CPAI-2024-0560 CVE-2024-36991
Splunk Enterprise Path Traversal (CVE-2024-36991)
Critical 10 Jul 2024 10 Nov 2024 CPAI-2024-0559 CVE-2024-36401
OSGeo GeoServer Remote Code Execution (CVE-2024-36401)
Critical 20 Jun 2024 10 Nov 2024 CPAI-2024-0416 CVE-2024-23692
Rejetto HTTP File Server Server-Side Template Injection (CVE-2024-23692)
High 23 Jun 2024 10 Nov 2024 CPAI-2024-0408 CVE-2024-28995
SolarWinds Serv-U Directory Traversal (CVE-2024-28995)
Critical 17 Jun 2024 10 Nov 2024 CPAI-2024-0407 CVE-2024-27348
Apache HugeGraph Server Remote Code Execution (CVE-2024-27348)
Critical 23 May 2024 10 Nov 2024 CPAI-2024-0320 CVE-2024-32113
Apache OFBiz Path Traversal (CVE-2024-32113)
High 4 Feb 2024 10 Nov 2024 CPAI-2024-0035 CVE-2024-21893
Ivanti Server-Side Request Forgery (CVE-2024-21893)
Critical 15 Jan 2024 10 Nov 2024 CPAI-2023-1448 CVE-2023-41892
Craft CMS Remote Code Execution (CVE-2023-41892)
Critical 16 Sep 2024 7 Nov 2024 CPAI-2024-0797 CVE-2024-28987
SolarWinds Web Help Desk Authentication Bypass (CVE-2024-28987)
Critical 7 Aug 2024 7 Nov 2024 CPAI-2024-0663 CVE-2024-38856
Apache OFBiz Remote Code Execution (CVE-2024-38856)
Critical 6 Nov 2024 6 Nov 2024 CPAI-2024-1027 CVE-2024-4434
WordPress LearnPress Plugin SQL Injection (CVE-2024-4434)
Medium 6 Nov 2024 6 Nov 2024 CPAI-2024-1024 CVE-2024-6931
WordPress The Events Calendar Plugin Cross-Site Scripting (CVE-2024-6931)
High 6 Nov 2024 6 Nov 2024 CPAI-2024-1009 CVE-2024-35517
Netgear XR1000 Command Injection (CVE-2024-35517)
Medium 6 Nov 2024 6 Nov 2024 CPAI-2024-1008 CVE-2024-35520
Netgear R7000 Command Injection (CVE-2024-35520)
High 6 Nov 2024 6 Nov 2024 CPAI-2024-1005 CVE-2024-35518
CVE-2024-35519
CVE-2024-35522
Netgear EX Series Command Injection (CVE-2024-35518; CVE-2024-35519; CVE-2024-35522)
Critical 5 Nov 2024 5 Nov 2024 CPAI-2024-1042 CVE-2024-8956
PTZOptics PT30X Information Disclosure (CVE-2024-8956)
Critical 5 Nov 2024 5 Nov 2024 CPAI-2024-1041 CVE-2024-8957
PTZOptics PT30X Command Injection (CVE-2024-8957)
High 5 Nov 2024 5 Nov 2024 CPAI-2023-1922 CVE-2023-52755
Linux Kernel Out-of-Bounds Write (CVE-2023-52755)
Critical 5 Nov 2024 5 Nov 2024 CPAI-2018-2852 CVE-2018-16159
WordPress Codemenschen Gift Vouchers Plugin SQL Injection (CVE-2018-16159)
×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK