Home / 2020 Advisories Archive

2020 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
High	19 Oct 2020	19 Oct 2020	CPAI-2020-0991		CVE-2020-6386	Google Chrome Speech Use After Free (CVE-2020-6386)
Critical	19 Oct 2020	19 Oct 2020	CPAI-2020-1002		CVE-2020-6461	Google Chrome Use After Free (CVE-2020-6461)
Critical	19 Oct 2020	19 Oct 2020	CPAI-2020-1005		CVE-2020-6462	Google Chrome Use After Free (CVE-2020-6462)
Critical	19 Oct 2020	19 Oct 2020	CPAI-2020-1007		CVE-2020-10621	Advantech WebAccess Arbitrary File Upload (CVE-2020-10621)
High	19 Oct 2020	19 Oct 2020	CPAI-2020-1010		CVE-2020-6385	Google Chrome Policy Bypass (CVE-2020-6385)
High	19 Oct 2020	19 Oct 2020	CPAI-2020-1022			Authors ePublisher Command Injection
Critical	15 Oct 2020	15 Oct 2020	CPAI-2020-0995		CVE-2020-6466	Google Chrome Heap Corruption (CVE-2020-6466)
Critical	15 Oct 2020	15 Oct 2020	CPAI-2020-0996		CVE-2020-6465	Google Chrome Use After Free (CVE-2020-6465)
High	15 Oct 2020	15 Oct 2020	CPAI-2020-0997		CVE-2020-6383	Google Chrome Heap Corruption (CVE-2020-6383)
High	15 Oct 2020	15 Oct 2020	CPAI-2020-0998		CVE-2020-6455	Google Chrome Heap Corruption (CVE-2020-6455)
High	15 Oct 2020	15 Oct 2020	CPAI-2020-1001		CVE-2020-6459	Google Chrome Use After Free (CVE-2020-6459)
High	16 Aug 2020	14 Oct 2020	CPAI-2020-0715			HTTP Server Side Template Injection
High	14 Oct 2020	14 Oct 2020	CPAI-2015-1078		CVE-2015-1209	Google Chrome Use After Free (CVE-2015-1209)
Critical	14 Oct 2020	14 Oct 2020	CPAI-2020-0993		CVE-2020-6493	Google Chrome Audio Use After Free (CVE-2020-6493)
High	14 Oct 2020	14 Oct 2020	CPAI-2020-0994		CVE-2020-6420	Google Chrome Media Cross Origin Bypass (CVE-2020-6420)
Critical	13 Oct 2020	13 Oct 2020	CPAI-2020-0901	Microsoft CVE-2020-16898	CVE-2020-16898	Microsoft Windows TCP/IP Remote Code Execution (CVE-2020-16898)
High	13 Oct 2020	13 Oct 2020	CPAI-2020-0902	Microsoft CVE-2020-16899	CVE-2020-16899	Microsoft Windows TCP/IP Denial of Service (CVE-2020-16899)
High	13 Oct 2020	13 Oct 2020	CPAI-2020-0999	Microsoft CVE-2020-16896	CVE-2020-16896	Microsoft Windows Remote Desktop Protocol (RDP) Information Disclosure (CVE-2020-16896)
Low	13 Oct 2020	13 Oct 2020	CPAI-2020-1004		CVE-2020-16915	Microsoft Windows Media Foundation H265 Stream Parsing Remote Code Execution (CVE-2020-16915)
Medium	7 Oct 2020	12 Oct 2020	CPAI-2020-0913		CVE-2020-26043	Hoosk CMS Cross Site Scripting (CVE-2020-26043)
Critical	11 Oct 2020	11 Oct 2020	CPAI-2017-1102		CVE-2017-17576 CVE-2017-17589	FS Thumbtack Clone SQL Injection (CVE-2017-17589; CVE-2017-17576)
Medium	11 Oct 2020	11 Oct 2020	CPAI-2020-0906		CVE-2020-14022	Ozeki NG SMS Gateway Arbitrary File Upload (CVE-2020-14022)
Critical	11 Oct 2020	11 Oct 2020	CPAI-2020-0912		CVE-2020-13499 CVE-2020-13500 CVE-2020-13501	Aveva eDNA Enterprise SQL Injection (CVE-2020-13499; CVE-2020-13500; CVE-2020-13501)
Medium	11 Oct 2020	11 Oct 2020	CPAI-2020-0964		CVE-2020-16148	Telmat Remote Code Execution (CVE-2020-16148)
Medium	11 Oct 2020	11 Oct 2020	CPAI-2020-0966			GetSimple CMS Persistent Cross-Site Scripting
Medium	11 Oct 2020	11 Oct 2020	CPAI-2020-0967			Typesetter CMS Persistent Cross-Site Scripting
Critical	11 Oct 2020	11 Oct 2020	CPAI-2020-0985		CVE-2020-6449	Google Chrome Audio Use After Free (CVE-2020-6449)
Critical	11 Oct 2020	11 Oct 2020	CPAI-2020-0987		CVE-2020-6427	Google Chrome Audio Use After Free (CVE-2020-6427)
High	7 Oct 2020	7 Oct 2020	CPAI-2020-0888		CVE-2020-5722	Grandstream UCM6202 Command Injection (CVE-2020-5722)
Medium	7 Oct 2020	7 Oct 2020	CPAI-2020-0908		CVE-2020-14026	Ozeki SMS Gateway Remote Code Execution (CVE-2020-14026)
Medium	7 Oct 2020	7 Oct 2020	CPAI-2020-0910		CVE-2020-14028	Ozeki NG SMS Gateway Directory Traversal (CVE-2020-14028)
High	7 Oct 2020	7 Oct 2020	CPAI-2020-0916		CVE-2020-26042	Hoosk CMS SQL Injection (CVE-2020-26042)
Medium	7 Oct 2020	7 Oct 2020	CPAI-2020-0917		CVE-2020-26041	Hoosk CMS Remote Code Execution (CVE-2020-26041)
High	7 Oct 2020	7 Oct 2020	CPAI-2020-0918		CVE-2020-20800	Metinfo SQL Injection (CVE-2020-20800)
High	7 Oct 2020	7 Oct 2020	CPAI-2018-1693		CVE-2018-12463	Fortify Software Security Center Command Injection (CVE-2018-12463)
High	4 Oct 2020	4 Oct 2020	CPAI-2017-1097		CVE-2017-2789	JustSystems Ichitaro Buffer Overflow (CVE-2017-2789)
Medium	4 Oct 2020	4 Oct 2020	CPAI-2017-1098		CVE-2017-2374	Apple GarageBand Remote Code Execution (CVE-2017-2374)
High	4 Oct 2020	4 Oct 2020	CPAI-2020-0885		CVE-2020-24197	Stock Management System Project SQL Injection (CVE-2020-24197)
Medium	4 Oct 2020	4 Oct 2020	CPAI-2017-1099		CVE-2017-7398	DLink DIR-615 Cross Site Request Forgery (CVE-2017-7398)
High	1 Oct 2020	1 Oct 2020	CPAI-2008-0453		CVE-2008-1236	Mozilla Firefox Remote Code Execution (CVE-2008-1236)
High	29 Sep 2020	29 Sep 2020	CPAI-2020-0875			PHP-Fusion Remote Command Execution (CVE-2020-24949)
High	24 Sep 2020	24 Sep 2020	CPAI-2020-0846		CVE-2020-24057	Verint PTZ Camera Command Injection (CVE-2020-24057)
Medium	24 Sep 2020	24 Sep 2020	CPAI-2020-0877		CVE-2020-4711	IBM Spectrum Protect Plus Directory Traversal (CVE-2020-4711)
High	24 Sep 2020	24 Sep 2020	CPAI-2020-0878			Nagios XI command_test.php Command Injection
Critical	24 Sep 2020	24 Sep 2020	CPAI-2017-1100		CVE-2017-6971	AlienVault OSSIM Remote Code Execution (CVE-2017-6971)
High	24 Sep 2020	24 Sep 2020	CPAI-2017-1101		CVE-2017-9226	Oniguruma Project Memory Corruption (CVE-2017-9226)
Critical	22 Sep 2020	22 Sep 2020	CPAI-2017-1065		CVE-2017-15971	Softdatepro SameDate Pro SQL Injection (CVE-2017-15971)
High	22 Sep 2020	22 Sep 2020	CPAI-2020-0856		CVE-2020-5777	Magneto MAGMI Authentication Bypass (CVE-2020-5777)
High	22 Sep 2020	22 Sep 2020	CPAI-2020-0881			Microsoft Office Remote Code Execution (CVE-2017-0261)
High	21 Sep 2020	21 Sep 2020	CPAI-2020-0841		CVE-2020-8218	Pulse Connect Secure Remote Code Execution (CVE-2020-8218)