Home / 2020 Advisories Archive

2020 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
High	1 Jul 2020	1 Jul 2020	CPAI-2017-1054		CVE-2017-17107	Zivif Webcams Remote Code Execution (CVE-2017-17107)
Critical	11 Mar 2020	30 Jun 2020	CPAI-2020-0136	Microsoft CVE-2020-0796	CVE-2020-0796	Microsoft Windows SMBv3 Remote Code Execution (CVE-2020-0796)
High	30 Jun 2020	30 Jun 2020	CPAI-2020-0540			PHPGCC Payloads Remote Code Execution
High	30 Jun 2020	30 Jun 2020	CPAI-2017-1052		CVE-2017-18025	Innotube ITGuard-Manager Remote Code Execution (CVE-2017-18025)
High	30 Jun 2020	30 Jun 2020	CPAI-2020-0547		CVE-2020-12849 CVE-2020-12853	Pydio Cells Cross-Site Scripting (CVE-2020-12849; CVE-2020-12853)
High	28 Jun 2020	30 Jun 2020	CPAI-2020-0550		CVE-2020-10824 CVE-2020-10825	DrayTek Vigor Stack Buffer Overflow (CVE-2020-10824; CVE-2020-10825)
High	30 Jun 2020	30 Jun 2020	CPAI-2020-0561		CVE-2020-12243	OpenLDAP Slapd Denial of Service (CVE-2020-12243)
Medium	16 Jun 2020	29 Jun 2020	CPAI-2018-1418		CVE-2018-7787	Schneider Electric U.motion Builder Information Disclosure (CVE-2018-7787)
High	28 Jun 2020	28 Jun 2020	CPAI-2020-0538		CVE-2020-7673	Node.js Node Extend Remote Code Execution (CVE-2020-7673)
Critical	28 Jun 2020	28 Jun 2020	CPAI-2018-1512		CVE-2018-7315	Joomla Ek Rishta SQL Injection (CVE-2018-7315)
Medium	28 Jun 2020	28 Jun 2020	CPAI-2013-0786		CVE-2013-3527	Vanilla Forums SQL Injection (CVE-2013-3527)
High	28 Jun 2020	28 Jun 2020	CPAI-2020-0549		CVE-2020-10823	DrayTek Vigor Stack Buffer Overflow (CVE-2020-10823)
High	28 Jun 2020	28 Jun 2020	CPAI-2018-1519		CVE-2018-10969	WordPress Pie Register Plugin SQL Injection (CVE-2018-10969)
Medium	28 Jun 2020	28 Jun 2020	CPAI-2018-1520		CVE-2018-11689	Samsung Smart Viewer Cross-site Scripting (CVE-2018-11689)
High	25 Jun 2020	25 Jun 2020	CPAI-2020-0535		CVE-2020-13224	TP-Link Cloud Cameras Stack Overflow (CVE-2020-13224)
High	25 Jun 2020	25 Jun 2020	CPAI-2018-1514		CVE-2018-6230	Trendmicro Email Encryption Gateway SQL Injection (CVE-2018-6230)
High	25 Jun 2020	25 Jun 2020	CPAI-2018-1516		CVE-2018-11615	Mosca Project Denial of Service (CVE-2018-11615)
Critical	25 Jun 2020	25 Jun 2020	CPAI-2018-1518		CVE-2018-1000019	OpenEMR fax_dispatch.php Command Injection (CVE-2018-1000019)
Critical	25 Jun 2020	25 Jun 2020	CPAI-2020-0558			WordPress 10Web Photo Gallery Plugin SQL Injection
High	25 Jun 2020	25 Jun 2020	CPAI-2020-0560			Redis Authentication Bypass Remote Command Execution
Medium	23 Jun 2020	23 Jun 2020	CPAI-2019-2150		CVE-2019-7616	Kibana Elasticsearch Server Side Request Forgery (CVE-2019-7616)
Medium	31 May 2020	22 Jun 2020	CPAI-2018-1392		CVE-2018-15745	Argus Surveillance DVR Directory Traversal (CVE-2018-15745)
High	21 Jun 2020	21 Jun 2020	CPAI-2020-0442		CVE-2020-11650	iXsystems FreeNAS Denial of Service (CVE-2020-11650)
High	21 Jun 2020	21 Jun 2020	CPAI-2020-0524		CVE-2020-13389 CVE-2020-13390 CVE-2020-13391 CVE-2020-13392 CVE-2020-13393	Tenda Buffer Overflow (CVE-2020-13389; CVE-2020-13390; CVE-2020-13391; CVE-2020-13392; CVE-2020-13393)
High	20 Jun 2020	20 Jun 2020	CPAI-2020-0516		CVE-2020-13853	Pandora FMS Persistent Cross-Site Scripting (CVE-2020-13853)
High	20 Jun 2020	20 Jun 2020	CPAI-2020-0517		CVE-2020-13851 CVE-2020-13852 CVE-2020-13855	Pandora FMS Remote Code Execution (CVE-2020-13851; CVE-2020-13852; CVE-2020-13855)
High	20 Jun 2020	20 Jun 2020	CPAI-2020-0520		CVE-2020-13231	Cacti Cross-Site Scripting (CVE-2020-13231)
High	20 Jun 2020	20 Jun 2020	CPAI-2020-0526			Netgear R7000 Router Remote Code Execution
Medium	20 Jun 2020	20 Jun 2020	CPAI-2017-1051		CVE-2017-1672	IBM Tivoli Key Lifecycle Manager Cross-Site Request Forgery (CVE-2017-1672)
Critical	20 Jun 2020	20 Jun 2020	CPAI-2020-0536		CVE-2020-12116	Zoho ManageEngine Directory Traversal (CVE-2020-12116)
High	20 Jun 2020	20 Jun 2020	CPAI-2020-0537		CVE-2020-13818	Zoho ManageEngine Directory Traversal (CVE-2020-13818)
High	17 Jun 2020	17 Jun 2020	CPAI-2020-0490		CVE-2020-10957	Dovecot Null Pointer Dereference (CVE-2020-10957)
Medium	17 Jun 2020	17 Jun 2020	CPAI-2020-0492		CVE-2020-10967	Dovecot Denial of Service (CVE-2020-10967)
High	17 Jun 2020	17 Jun 2020	CPAI-2020-0530			Advantech WebAccess SCADA Arbitrary File Deletion
High	17 Jun 2020	17 Jun 2020	CPAI-2020-0532		CVE-2020-12438	PHP-Fusion Administration banners.php Cross-Site Scripting (CVE-2020-12438)
High	16 Jun 2020	16 Jun 2020	CPAI-2020-0507		CVE-2020-7662 CVE-2020-7663	Websocket Extensions Denial of Service (CVE-2020-7662; CVE-2020-7663)
High	16 Jun 2020	16 Jun 2020	CPAI-2020-0521		CVE-2020-0986	Microsoft Windows Kernel Elevation of Privilege (CVE-2020-0986)
High	16 Jun 2020	16 Jun 2020	CPAI-2020-0478		CVE-2020-8617	ISC Bind Denial Of Service (CVE-2020-8617)
Medium	16 Jun 2020	16 Jun 2020	CPAI-2015-1056		CVE-2015-8376	Symphony CMS Cross-Site Scripting (CVE-2015-8376)
High	16 Jun 2020	16 Jun 2020	CPAI-2013-0785		CVE-2013-2559	Symphony CMS SQL Injection (CVE-2013-2559)
Medium	16 Jun 2020	16 Jun 2020	CPAI-2020-0510			Joomla J2Store SQL Injection
High	15 Jun 2020	15 Jun 2020	CPAI-2010-0628		CVE-2010-3457	Symphony CMS Cross-Site Scripting (CVE-2010-3457)
High	15 Jun 2020	15 Jun 2020	CPAI-2010-0629		CVE-2010-3458	Symphony CMS SQL Injection (CVE-2010-3458)
High	15 Jun 2020	15 Jun 2020	CPAI-2015-1055		CVE-2015-8766	Symphony CMS Cross-Site Scripting (CVE-2015-8766)
Medium	15 Jun 2020	15 Jun 2020	CPAI-2020-0509		CVE-2020-10667	Canon Oce Colorwave Printer Cross Site Scripting (CVE-2020-10667)
High	7 Apr 2020	14 Jun 2020	CPAI-2020-0151		CVE-2020-10386 CVE-2020-10389	Chadha PHPKB Remote Code Execution (CVE-2020-10386; CVE-2020-10389)
Medium	11 Jun 2020	11 Jun 2020	CPAI-2020-0487		CVE-2020-13693	Wordpress BBPress Plugin Privilege Escalation (CVE-2020-13693)
High	15 Jan 2020	10 Jun 2020	CPAI-2020-0009			IBM Ricoh Infoprint Printer Cross-Site Scripting
High	18 Mar 2020	10 Jun 2020	CPAI-2020-0142			Zyxel Cloud CNM SecuManager Cross Site Scripting
High	17 May 2020	10 Jun 2020	CPAI-2019-2052		CVE-2019-11839	NGINX NJS Heap-Based Buffer Overflow (CVE-2019-11839)