Home / 2014 Advisories Archive

2014 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
Critical	26 May 2014	29 May 2024	CPAI-2014-1569		CVE-2019-16692 CVE-2020-15468 CVE-2020-26518 CVE-2020-29284 CVE-2021-21915 CVE-2022-3241 CVE-2022-4681 CVE-2023-23488 CVE-2023-23489 CVE-2023-23490 CVE-2023-4987 CVE-2024-24495 CVE-2024-2879 CVE-2024-35511	SQL Servers Time-based SQL Injection (CVE-2019-16692; CVE-2020-15468; CVE-2020-26518; CVE-2020-29284; CVE-2021-21915; CVE-2022-3241; CVE-2022-4681; CVE-2023-23488; CVE-2023-23489; CVE-2023-23490; CVE-2023-4987; CVE-2024-24495; CVE-2024-2879; CVE-2024-35511)
Critical	16 Nov 2014	27 May 2024	CPAI-2014-2206		CVE-2018-7665 CVE-2019-16113 CVE-2019-9858 CVE-2020-27387 CVE-2021-26918 CVE-2022-0316 CVE-2022-24688 CVE-2022-26645 CVE-2022-38296 CVE-2023-22952	Web Servers Suspicious File Upload (CVE-2018-7665; CVE-2019-16113; CVE-2019-9858; CVE-2020-27387; CVE-2021-26918; CVE-2022-0316; CVE-2022-24688; CVE-2022-26645; CVE-2022-38296; CVE-2023-22952)
Critical	25 May 2014	5 May 2024	CPAI-2014-1567		CVE-2018-10737 CVE-2018-18755 CVE-2018-18798 CVE-2018-6578 CVE-2018-6582 CVE-2018-6604 CVE-2018-6605 CVE-2020-10230 CVE-2022-23882 CVE-2023-48084	SQL Servers MySQL Vendor-specific SQL Injection (CVE-2018-10737; CVE-2018-18755; CVE-2018-18798; CVE-2018-6578; CVE-2018-6582; CVE-2018-6604; CVE-2018-6605; CVE-2020-10230; CVE-2022-23882; CVE-2023-48084)
Critical	6 Apr 2014	27 Mar 2024	CPAI-2014-1326		CVE-2018-7312 CVE-2019-20361 CVE-2020-8637 CVE-2022-27431 CVE-2022-28530 CVE-2022-29383 CVE-2022-31787 CVE-2022-46072 CVE-2022-47859 CVE-2022-47861 CVE-2022-47864 CVE-2022-47865 CVE-2022-47866 CVE-2023-0630	Sqlmap Automated SQL Injection Tool (CVE-2018-7312; CVE-2019-20361; CVE-2020-8637; CVE-2022-27431; CVE-2022-28530; CVE-2022-29383; CVE-2022-31787; CVE-2022-46072; CVE-2022-47859; CVE-2022-47861; CVE-2022-47864; CVE-2022-47865; CVE-2022-47866; CVE-2023-0630)
Critical	23 Feb 2014	5 Feb 2024	CPAI-2014-0936		CVE-2009-1151	PhpMyAdmin Remote Code Execution (CVE-2009-1151)
Critical	26 May 2014	15 Jan 2024	CPAI-2014-1572		CVE-2022-24266	SQL Servers Blind SQL Injection (CVE-2022-24266)
High	14 Oct 2014	8 Nov 2023	CPAI-2014-1848		CVE-2022-29848	Windows System Files Information Disclosure (CVE-2022-29848)
High	25 May 2014	22 Oct 2023	CPAI-2014-1629	Rapid7	CVE-2014-3120	ElasticSearch Remote Code Execution (CVE-2014-3120)
High	31 Mar 2014	30 Aug 2023	CPAI-2014-1178			Nikto Security Scanner
High	14 Sep 2014	12 Jul 2023	CPAI-2014-1801			PhpMyAdmin REQUEST Superglobal Remote Variable Manipulation
Critical	16 Jun 2014	29 Jun 2023	CPAI-2014-1671		CVE-2000-0208 CVE-2018-10823 CVE-2018-1144 CVE-2018-3948 CVE-2019-9926	Linux System Files Information Disclosure (CVE-2000-0208; CVE-2018-10823; CVE-2018-1144; CVE-2018-3948; CVE-2019-9926)
Critical	26 May 2014	2 May 2023	CPAI-2014-1573			SQL Servers Unauthorized SQL Injection Command Execution
High	6 Mar 2014	24 Apr 2023	CPAI-2014-0971			Greenbone OpenVAS Security Scanner
Critical	9 Nov 2014	27 Feb 2023	CPAI-2014-1983	Adobe APSB14-21	CVE-2014-0549	Adobe Flash Player Memory Corruption (APSB14-21: CVE-2014-0549)
Critical	24 Nov 2014	16 Feb 2023	CPAI-2014-2224		CVE-2022-46966	MySQL Into OutFile SQL Injection (CVE-2022-46966)
High	3 Mar 2014	19 Jan 2023	CPAI-2014-1009			Command Injection - Ver2
Critical	4 May 2014	27 Oct 2022	CPAI-2014-1513			JavaScript Functions Obfuscation Techniques
High	24 Jun 2014	29 Aug 2022	CPAI-2014-1670			JPEG Files Containing Suspicious Comments
Critical	6 Apr 2014	21 Jun 2022	CPAI-2014-1175			Havij Automated SQL Injection tool
Critical	26 May 2014	24 Feb 2022	CPAI-2014-1568			SQL Servers Oracle Vendor-specific SQL Injection
High	19 Feb 2014	29 Sep 2021	CPAI-2014-0930			Google Chrome XSSAuditor Filter Security Policy Bypass
Critical	10 Jun 2014	24 Jun 2021	CPAI-2014-1505	Microsoft MS14-035	CVE-2014-1804	Microsoft Internet Explorer Memory Corruption (MS14-035: CVE-2014-1804)
Critical	26 May 2014	17 Aug 2020	CPAI-2014-1571			SQL Servers Stack Query SQL Injection
Medium	22 Jan 2014	22 Jun 2020	CPAI-2014-0757		CVE-2013-6933	VLC Media Player RTSP Plugin Stack Buffer Overflow (CVE-2013-6933)
Critical	12 Nov 2014	16 Jun 2020	CPAI-2014-2185			SunRPC Data Connection Evasion Technique
High	13 Apr 2014	10 Jun 2020	CPAI-2014-1351	McAfee	CVE-2014-2536	McAfee Cloud Single Sign On ExtensionAccessServlet Directory Traversal (CVE-2014-2536)
Medium	16 Apr 2014	10 Jun 2020	CPAI-2014-1363		CVE-2012-2442	Nokia PC Suite Video Manager Buffer Overflow - Ver2 (CVE-2012-2442)
High	14 May 2014	10 Jun 2020	CPAI-2014-1536	Linux Kernel	CVE-2014-2309	Linux Kernel IPv6 Router Advertisement Packets Processing Denial of Service (CVE-2014-2309)
High	25 May 2014	10 Jun 2020	CPAI-2014-1562	Rapid7	CVE-2013-2751	NETGEAR ReadyNAS np_handler Code Execution (CVE-2013-2751)
Medium	12 Jun 2014	10 Jun 2020	CPAI-2014-1628		CVE-2013-0232	ZoneMinder Video Server packageControl Command Execution (CVE-2013-0232)
Critical	23 Feb 2014	27 May 2020	CPAI-2014-0933			Multiple Routers HNAP Insecure Implementation Privilege Escalation
Critical	2 Jul 2014	19 Jan 2020	CPAI-2014-1682			Multiple PHP Servers C99shell Backdoor Command Execution
Critical	7 May 2014	25 Dec 2019	CPAI-2014-1527			China Chopper Web Shell Remote Code Execution
High	14 Sep 2014	8 Dec 2019	CPAI-2014-1800			PhpMyAdmin GLOBALS Superglobal Remote Variable Manipulation
Critical	28 Dec 2014	14 Nov 2019	CPAI-2014-1141		CVE-2013-2348	HP Data Protector Opcode 45 and 46 Code Execution (CVE-2013-2348)
High	22 Jan 2014	9 Sep 2019	CPAI-2014-0756		CVE-2013-5487 CVE-2019-1621	Cisco Prime Data Center Network Manager DownloadServlet Information Disclosure (CVE-2013-5487; CVE-2019-1621)
High	28 Dec 2014	7 Jul 2019	CPAI-2014-2364		CVE-2012-0507	Oracle Java AtomicReferenceArray Sandbox Breach Code Execution - Ver2 (CVE-2012-0507)
High	14 Sep 2014	19 Jun 2019	CPAI-2014-1799		CVE-2010-3065	PhpMyAdmin ENV Superglobal Remote Variable Manipulation (CVE-2010-3065)
Critical	25 Apr 2014	4 Jun 2019	CPAI-2014-1480	Apache Struts S2-020	CVE-2014-0094 CVE-2014-0112 CVE-2014-0113 CVE-2014-0114	Apache Struts ParametersInterceptor ClassLoader Security Bypass (CVE-2014-0094; CVE-2014-0112; CVE-2014-0113; CVE-2014-0114)
High	14 Sep 2014	4 Jun 2019	CPAI-2014-1803			PhpMyAdmin SERVER Superglobal Remote Variable Manipulation
High	19 Jan 2014	13 May 2019	CPAI-2014-0750		CVE-2013-5211	NTP Servers Monlist Command Denial of Service (CVE-2013-5211)
High	10 Nov 2014	13 May 2019	CPAI-2014-2153		CVE-2008-2564 CVE-2010-4617	Joomla Component com_jotloader SQL Injection (CVE-2008-2564; CVE-2010-4617)
Critical	20 Jan 2014	23 Apr 2019	CPAI-2014-0753		CVE-2013-3900	Microsoft Windows WinVerifyTrust PE Validation Security Bypass (MS13-098; CVE-2013-3900)
High	29 Jul 2014	7 Apr 2019	CPAI-2014-1691	Microsoft MS14-031	CVE-2014-1811	Microsoft Windows TCP Denial of Service (MS14-031; CVE-2014-1811)
Critical	12 Mar 2014	1 Apr 2019	CPAI-2014-0879	Microsoft MS14-006	CVE-2014-0254	Microsoft Windows IPv6 Router Advertisements Denial of Service (MS14-006; CVE-2014-0254)
Critical	13 Nov 2014	31 Mar 2019	CPAI-2014-2188	Adobe APSB14-21	CVE-2014-0557	Adobe Flash Player Memory Leakage (APSB14-21: CVE-2014-0557)
High	10 Nov 2014	25 Mar 2019	CPAI-2014-2042			Joomla Component com_phocagallery SQL Injection
High	10 Nov 2014	25 Mar 2019	CPAI-2014-2130		CVE-2009-4599	Joomla Component com_jsjobs SQL Injection (CVE-2009-4599)
High	10 Nov 2014	25 Mar 2019	CPAI-2014-2004		CVE-2008-2093	Joomla Community com_comprofiler SQL Injection (CVE-2008-2093)
High	10 Nov 2014	25 Mar 2019	CPAI-2014-2121			Joomla Component com_event Multiple