Home / 2020 Advisories Archive

2020 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Industry Reference	Description
High	14 Jul 2020	14 Jul 2020	CPAI-2020-0660	CVE-2020-1410	Microsoft Windows Address Book Contact File Parsing Integer Overflow (CVE-2020-1410)
Critical	13 Jul 2020	13 Jul 2020	CPAI-2017-1057	CVE-2017-11317 CVE-2017-11357	Telerik UI Arbitrary File Upload (CVE-2017-11317; CVE-2017-11357)
High	12 Jul 2020	12 Jul 2020	CPAI-2020-0633		Joomla J2 Jobs SQL Injection
Critical	8 Jul 2020	8 Jul 2020	CPAI-2020-0575	CVE-2020-14473	DrayTek Vigor Buffer Overflow (CVE-2020-14473)
Critical	8 Jul 2020	8 Jul 2020	CPAI-2020-0576	CVE-2020-14472	DrayTek Vigor Remote Code Execution (CVE-2020-14472)
High	8 Jul 2020	8 Jul 2020	CPAI-2020-0577		Netgear Nighthawk R6700 Router Heap Overflow
High	8 Jul 2020	8 Jul 2020	CPAI-2017-1055	CVE-2017-6320	Barracuda Load Balancer Remote Code Execution (CVE-2017-6320)
High	18 Mar 2020	7 Jul 2020	CPAI-2020-0144	CVE-2020-15348	Zyxel Cloud CNM SecuManager Remote Code Execution (CVE-2020-15348)
High	7 Jul 2020	7 Jul 2020	CPAI-2018-1536	CVE-2018-17057	TCPDF Phar Insecure Deserialization (CVE-2018-17057)
Medium	26 Feb 2020	6 Jul 2020	CPAI-2019-1786	CVE-2019-16113	Bludit CMS Arbitrary File Upload (CVE-2019-16113)
High	6 Jul 2020	6 Jul 2020	CPAI-2018-1534	CVE-2018-7180	Joomla Saxum Astro Component SQL Injection (CVE-2018-7180)
High	5 Jul 2020	5 Jul 2020	CPAI-2020-0565		OpenEMR controller Remote Code Execution
High	5 Jul 2020	5 Jul 2020	CPAI-2020-0569	CVE-2020-14993	DrayTek Buffer Overflow (CVE-2020-14993)
High	5 Jul 2020	5 Jul 2020	CPAI-2015-1057	CVE-2015-5958	phpFileManager Remote Code Execution (CVE-2015-5958)
Critical	5 Jul 2020	5 Jul 2020	CPAI-2014-0852	CVE-2014-7173	FarLinX X25 Command Injection (CVE-2014-7173)
High	5 Jul 2020	5 Jul 2020	CPAI-2014-0853	CVE-2014-8945	Lexiglot Command Injection (CVE-2014-8945)
High	5 Jul 2020	5 Jul 2020	CPAI-2016-0973	CVE-2016-6174	IPS Community Suite Remote Code Execution (CVE-2016-6174)
Medium	5 Jul 2020	5 Jul 2020	CPAI-2019-2176	CVE-2019-8943	WordPress Core Directory Traversal (CVE-2019-8943)
Critical	3 Jul 2020	3 Jul 2020	CPAI-2019-2187	CVE-2019-8684	Apple Multiple Products Memory Corruption (CVE-2019-8684)
High	3 Jul 2020	3 Jul 2020	CPAI-2018-1537	CVE-2018-7539	Appear TV XC5000 and XC5100 Arbitrary File Read (CVE-2018-7539)
Medium	3 Jul 2020	3 Jul 2020	CPAI-2018-1538	CVE-2018-7490	uWSGI PHP Plugin Directory Traversal (CVE-2018-7490)
Critical	3 Jul 2020	3 Jul 2020	CPAI-2019-2192	CVE-2019-8518	Apple Multiple Products Memory Corruption (CVE-2019-8518)
Medium	2 Jul 2020	2 Jul 2020	CPAI-2018-1532	CVE-2018-18545	Fiyo CMS Cross Site Scripting (CVE-2018-18545)
Critical	1 Jul 2020	1 Jul 2020	CPAI-2020-0211		Apache Guacamole Remote Code Execution
Medium	1 Jul 2020	1 Jul 2020	CPAI-2020-0534		PHP Fusion SQL injection
High	1 Jul 2020	1 Jul 2020	CPAI-2017-1053	CVE-2017-17106	Zivif Webcams Information Disclosure (CVE-2017-17106)
High	1 Jul 2020	1 Jul 2020	CPAI-2017-1054	CVE-2017-17107	Zivif Webcams Remote Code Execution (CVE-2017-17107)
High	30 Jun 2020	30 Jun 2020	CPAI-2020-0540		PHPGCC Payloads Remote Code Execution
High	30 Jun 2020	30 Jun 2020	CPAI-2017-1052	CVE-2017-18025	Innotube ITGuard-Manager Remote Code Execution (CVE-2017-18025)
High	30 Jun 2020	30 Jun 2020	CPAI-2020-0547	CVE-2020-12849 CVE-2020-12853	Pydio Cells Cross-Site Scripting (CVE-2020-12849; CVE-2020-12853)
High	28 Jun 2020	30 Jun 2020	CPAI-2020-0550	CVE-2020-10824 CVE-2020-10825	DrayTek Vigor Stack Buffer Overflow (CVE-2020-10824; CVE-2020-10825)
High	30 Jun 2020	30 Jun 2020	CPAI-2020-0561	CVE-2020-12243	OpenLDAP Slapd Denial of Service (CVE-2020-12243)
Medium	16 Jun 2020	29 Jun 2020	CPAI-2018-1418	CVE-2018-7787	Schneider Electric U.motion Builder Information Disclosure (CVE-2018-7787)
High	28 Jun 2020	28 Jun 2020	CPAI-2020-0538	CVE-2020-7673	Node.js Node Extend Remote Code Execution (CVE-2020-7673)
Critical	28 Jun 2020	28 Jun 2020	CPAI-2018-1512	CVE-2018-7315	Joomla Ek Rishta SQL Injection (CVE-2018-7315)
Medium	28 Jun 2020	28 Jun 2020	CPAI-2013-0786	CVE-2013-3527	Vanilla Forums SQL Injection (CVE-2013-3527)
High	28 Jun 2020	28 Jun 2020	CPAI-2020-0549	CVE-2020-10823	DrayTek Vigor Stack Buffer Overflow (CVE-2020-10823)
High	28 Jun 2020	28 Jun 2020	CPAI-2018-1519	CVE-2018-10969	WordPress Pie Register Plugin SQL Injection (CVE-2018-10969)
Medium	28 Jun 2020	28 Jun 2020	CPAI-2018-1520	CVE-2018-11689	Samsung Smart Viewer Cross-site Scripting (CVE-2018-11689)
High	25 Jun 2020	25 Jun 2020	CPAI-2020-0535	CVE-2020-13224	TP-Link Cloud Cameras Stack Overflow (CVE-2020-13224)
High	25 Jun 2020	25 Jun 2020	CPAI-2018-1514	CVE-2018-6230	Trendmicro Email Encryption Gateway SQL Injection (CVE-2018-6230)
High	25 Jun 2020	25 Jun 2020	CPAI-2018-1516	CVE-2018-11615	Mosca Project Denial of Service (CVE-2018-11615)
Critical	25 Jun 2020	25 Jun 2020	CPAI-2018-1518	CVE-2018-1000019	OpenEMR fax_dispatch.php Command Injection (CVE-2018-1000019)
Critical	25 Jun 2020	25 Jun 2020	CPAI-2020-0558		WordPress 10Web Photo Gallery Plugin SQL Injection
High	25 Jun 2020	25 Jun 2020	CPAI-2020-0560		Redis Authentication Bypass Remote Command Execution
Medium	23 Jun 2020	23 Jun 2020	CPAI-2019-2150	CVE-2019-7616	Kibana Elasticsearch Server Side Request Forgery (CVE-2019-7616)
Medium	31 May 2020	22 Jun 2020	CPAI-2018-1392	CVE-2018-15745	Argus Surveillance DVR Directory Traversal (CVE-2018-15745)
High	21 Jun 2020	21 Jun 2020	CPAI-2020-0442	CVE-2020-11650	iXsystems FreeNAS Denial of Service (CVE-2020-11650)
High	21 Jun 2020	21 Jun 2020	CPAI-2020-0524	CVE-2020-13389 CVE-2020-13390 CVE-2020-13391 CVE-2020-13392 CVE-2020-13393	Tenda Buffer Overflow (CVE-2020-13389; CVE-2020-13390; CVE-2020-13391; CVE-2020-13392; CVE-2020-13393)
High	20 Jun 2020	20 Jun 2020	CPAI-2020-0516	CVE-2020-13853	Pandora FMS Persistent Cross-Site Scripting (CVE-2020-13853)