Home / 2020 Advisories Archive

2020 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
High	27 Jul 2020	27 Jul 2020	CPAI-2020-0686		CVE-2020-14946	BSA Radar Information Disclosure (CVE-2020-14946)
High	27 Jul 2020	27 Jul 2020	CPAI-2019-2202		CVE-2019-15310 CVE-2019-15311 CVE-2019-15312	GoAhead Command Injection (CVE-2019-15311; CVE-2019-15310; CVE-2019-15312)
High	23 Jul 2020	23 Jul 2020	CPAI-2020-0704			Redis Authentication Bypass Code Execution
High	23 Jul 2020	23 Jul 2020	CPAI-2020-0705			Google Chrome v8 Object.seal Map Transitions Type Confusion
Critical	22 Jul 2020	22 Jul 2020	CPAI-2013-0789		CVE-2013-0077	Microsoft Windows Media Decompression Remote Code Execution(MS13-011; CVE-2013-0077)
High	22 Jul 2020	22 Jul 2020	CPAI-2020-0703		CVE-2020-2956	Oracle E-Business Suite Human Resources SQL Injection (CVE-2020-2956)
Medium	21 Jul 2020	21 Jul 2020	CPAI-2020-0681		CVE-2020-6286 CVE-2020-6287	SAP NetWeaver Directory Traversal (CVE-2020-6286; CVE-2020-6287)
High	21 Jul 2020	21 Jul 2020	CPAI-2020-0691			HPE IMC deploySelectBootrom Remote Code Execution
High	21 Jul 2020	21 Jul 2020	CPAI-2020-0692		CVE-2020-8470	Trend Micro Multiple Products Directory Traversal (CVE-2020-8470)
High	2 Jul 2020	19 Jul 2020	CPAI-2020-0564			SYLKin Malware Infection Attempt
Critical	19 Jul 2020	19 Jul 2020	CPAI-2020-0668		CVE-2020-15539	We-Com Municipality Portal CMS SQL Injection (CVE-2020-15539)
High	19 Jul 2020	19 Jul 2020	CPAI-2020-0685			WordPress WP With Spritz Remote File Inclusion
Critical	19 Jul 2020	19 Jul 2020	CPAI-2012-0713		CVE-2012-0003	Microsoft Windows Media Player MIDI Remote Code Execution (MS12-004; CVE-2012-0003)
Critical	16 Jul 2020	16 Jul 2020	CPAI-2020-0659		CVE-2020-8519 CVE-2020-8520 CVE-2020-8521	Phpzag SQL Injection (CVE-2020-8519; CVE-2020-8520; CVE-2020-8521)
High	15 Jul 2020	15 Jul 2020	CPAI-2020-0630		CVE-2020-13640	WordPress gVectors wpDiscuz Plugin SQL Injection (CVE-2020-13640)
Critical	14 Jul 2020	14 Jul 2020	CPAI-2020-0574	Microsoft CVE-2020-1403	CVE-2020-1403	Microsoft VBScript Remote Code Execution (CVE-2020-1403)
Critical	14 Jul 2020	14 Jul 2020	CPAI-2020-0570	Microsoft CVE-2020-1374	CVE-2020-1374	Microsoft Remote Desktop Client Remote Code Execution (CVE-2020-1374)
High	14 Jul 2020	14 Jul 2020	CPAI-2020-0572	Microsoft CVE-2020-1399	CVE-2020-1399	Microsoft Windows Runtime Elevation of Privilege (CVE-2020-1399)
High	14 Jul 2020	14 Jul 2020	CPAI-2020-0660		CVE-2020-1410	Microsoft Windows Address Book Contact File Parsing Integer Overflow (CVE-2020-1410)
Critical	13 Jul 2020	13 Jul 2020	CPAI-2017-1057		CVE-2017-11317 CVE-2017-11357	Telerik UI Arbitrary File Upload (CVE-2017-11317; CVE-2017-11357)
High	12 Jul 2020	12 Jul 2020	CPAI-2020-0633			Joomla J2 Jobs SQL Injection
Critical	8 Jul 2020	8 Jul 2020	CPAI-2020-0575		CVE-2020-14473	DrayTek Vigor Buffer Overflow (CVE-2020-14473)
Critical	8 Jul 2020	8 Jul 2020	CPAI-2020-0576		CVE-2020-14472	DrayTek Vigor Remote Code Execution (CVE-2020-14472)
High	8 Jul 2020	8 Jul 2020	CPAI-2020-0577			Netgear Nighthawk R6700 Router Heap Overflow
High	8 Jul 2020	8 Jul 2020	CPAI-2017-1055		CVE-2017-6320	Barracuda Load Balancer Remote Code Execution (CVE-2017-6320)
High	18 Mar 2020	7 Jul 2020	CPAI-2020-0144		CVE-2020-15348	Zyxel Cloud CNM SecuManager Remote Code Execution (CVE-2020-15348)
High	7 Jul 2020	7 Jul 2020	CPAI-2018-1536		CVE-2018-17057	TCPDF Phar Insecure Deserialization (CVE-2018-17057)
Medium	26 Feb 2020	6 Jul 2020	CPAI-2019-1786		CVE-2019-16113	Bludit CMS Arbitrary File Upload (CVE-2019-16113)
High	6 Jul 2020	6 Jul 2020	CPAI-2018-1534		CVE-2018-7180	Joomla Saxum Astro Component SQL Injection (CVE-2018-7180)
High	5 Jul 2020	5 Jul 2020	CPAI-2020-0565			OpenEMR controller Remote Code Execution
High	5 Jul 2020	5 Jul 2020	CPAI-2020-0569		CVE-2020-14993	DrayTek Buffer Overflow (CVE-2020-14993)
High	5 Jul 2020	5 Jul 2020	CPAI-2015-1057		CVE-2015-5958	phpFileManager Remote Code Execution (CVE-2015-5958)
Critical	5 Jul 2020	5 Jul 2020	CPAI-2014-0852		CVE-2014-7173	FarLinX X25 Command Injection (CVE-2014-7173)
High	5 Jul 2020	5 Jul 2020	CPAI-2014-0853		CVE-2014-8945	Lexiglot Command Injection (CVE-2014-8945)
High	5 Jul 2020	5 Jul 2020	CPAI-2016-0973		CVE-2016-6174	IPS Community Suite Remote Code Execution (CVE-2016-6174)
Medium	5 Jul 2020	5 Jul 2020	CPAI-2019-2176		CVE-2019-8943	WordPress Core Directory Traversal (CVE-2019-8943)
Critical	3 Jul 2020	3 Jul 2020	CPAI-2019-2187		CVE-2019-8684	Apple Multiple Products Memory Corruption (CVE-2019-8684)
High	3 Jul 2020	3 Jul 2020	CPAI-2018-1537		CVE-2018-7539	Appear TV XC5000 and XC5100 Arbitrary File Read (CVE-2018-7539)
Medium	3 Jul 2020	3 Jul 2020	CPAI-2018-1538		CVE-2018-7490	uWSGI PHP Plugin Directory Traversal (CVE-2018-7490)
Critical	3 Jul 2020	3 Jul 2020	CPAI-2019-2192		CVE-2019-8518	Apple Multiple Products Memory Corruption (CVE-2019-8518)
Medium	2 Jul 2020	2 Jul 2020	CPAI-2018-1532		CVE-2018-18545	Fiyo CMS Cross Site Scripting (CVE-2018-18545)
Critical	1 Jul 2020	1 Jul 2020	CPAI-2020-0211			Apache Guacamole Remote Code Execution
Medium	1 Jul 2020	1 Jul 2020	CPAI-2020-0534			PHP Fusion SQL injection
High	1 Jul 2020	1 Jul 2020	CPAI-2017-1053		CVE-2017-17106	Zivif Webcams Information Disclosure (CVE-2017-17106)
High	1 Jul 2020	1 Jul 2020	CPAI-2017-1054		CVE-2017-17107	Zivif Webcams Remote Code Execution (CVE-2017-17107)
High	30 Jun 2020	30 Jun 2020	CPAI-2020-0540			PHPGCC Payloads Remote Code Execution
High	30 Jun 2020	30 Jun 2020	CPAI-2017-1052		CVE-2017-18025	Innotube ITGuard-Manager Remote Code Execution (CVE-2017-18025)
High	30 Jun 2020	30 Jun 2020	CPAI-2020-0547		CVE-2020-12849 CVE-2020-12853	Pydio Cells Cross-Site Scripting (CVE-2020-12849; CVE-2020-12853)
High	28 Jun 2020	30 Jun 2020	CPAI-2020-0550		CVE-2020-10824 CVE-2020-10825	DrayTek Vigor Stack Buffer Overflow (CVE-2020-10824; CVE-2020-10825)
High	30 Jun 2020	30 Jun 2020	CPAI-2020-0561		CVE-2020-12243	OpenLDAP Slapd Denial of Service (CVE-2020-12243)