Home / 2020 Advisories Archive

2020 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
Medium	4 Oct 2020	4 Oct 2020	CPAI-2017-1098		CVE-2017-2374	Apple GarageBand Remote Code Execution (CVE-2017-2374)
Medium	4 Oct 2020	4 Oct 2020	CPAI-2017-1099		CVE-2017-7398	DLink DIR-615 Cross Site Request Forgery (CVE-2017-7398)
High	1 Oct 2020	1 Oct 2020	CPAI-2008-0453		CVE-2008-1236	Mozilla Firefox Remote Code Execution (CVE-2008-1236)
High	29 Sep 2020	29 Sep 2020	CPAI-2020-0875			PHP-Fusion Remote Command Execution (CVE-2020-24949)
Medium	24 Sep 2020	24 Sep 2020	CPAI-2020-0877		CVE-2020-4711	IBM Spectrum Protect Plus Directory Traversal (CVE-2020-4711)
High	24 Sep 2020	24 Sep 2020	CPAI-2020-0878			Nagios XI command_test.php Command Injection
Critical	24 Sep 2020	24 Sep 2020	CPAI-2017-1100		CVE-2017-6971	AlienVault OSSIM Remote Code Execution (CVE-2017-6971)
High	24 Sep 2020	24 Sep 2020	CPAI-2017-1101		CVE-2017-9226	Oniguruma Project Memory Corruption (CVE-2017-9226)
Critical	22 Sep 2020	22 Sep 2020	CPAI-2017-1065		CVE-2017-15971	Softdatepro SameDate Pro SQL Injection (CVE-2017-15971)
High	22 Sep 2020	22 Sep 2020	CPAI-2020-0881			Microsoft Office Remote Code Execution (CVE-2017-0261)
Critical	21 Sep 2020	21 Sep 2020	CPAI-2020-0866			Verint PTZ Camera Stack Overflow
High	21 Sep 2020	21 Sep 2020	CPAI-2020-0870		CVE-2020-16875	Microsoft Exchange Memory Corruption (CVE-2020-16875)
Critical	21 Sep 2020	21 Sep 2020	CPAI-2015-1058		CVE-2015-2419	Microsoft Internet Explorer Memory Corruption (CVE-2015-2419)
Critical	21 Sep 2020	21 Sep 2020	CPAI-2018-1691		CVE-2018-1000861	Jenkins Stapler Web Framework Code Execution (CVE-2018-1000861)
Critical	16 Sep 2020	16 Sep 2020	CPAI-2017-1064		CVE-2017-15981 CVE-2017-15982	Geniusocean News SQL Injection (CVE-2017-15981; CVE-2017-15982)
Medium	16 Sep 2020	16 Sep 2020	CPAI-2017-1094		CVE-2017-14186	Fortinet FortiOS Cross-Site Scripting (CVE-2017-14186)
Medium	16 Sep 2020	16 Sep 2020	CPAI-2017-1095		CVE-2017-12824	InPage Reader Remote Code Execution (CVE-2017-12824)
High	15 Sep 2020	15 Sep 2020	CPAI-2020-0834			Sharpshooter HTML Remote Code Execution
Medium	13 Sep 2020	13 Sep 2020	CPAI-2020-0756			WordPress Newsletter Plugin Reflected Cross Site Scripting
High	10 Sep 2020	10 Sep 2020	CPAI-2020-0821			WordPress Colorbox Plugin Persistent Cross-Site Scripting
High	10 Sep 2020	10 Sep 2020	CPAI-2020-0832			Demiguise HTML Remote Code Execution
Critical	10 Sep 2020	10 Sep 2020	CPAI-2019-2246		CVE-2019-18396	Technicolor TD5130v2 Oi_Fw_V20 Command Injection (CVE-2019-18396)
High	9 Sep 2020	9 Sep 2020	CPAI-2020-0840			QNAP NAS Remote Code Execution
Critical	9 Sep 2020	9 Sep 2020	CPAI-2019-2212		CVE-2019-6340	Drupal Core Remote PHP Code Execution (CVE-2019-6340)
High	8 Sep 2020	8 Sep 2020	CPAI-2020-0827	Microsoft CVE-2020-0664	CVE-2020-0664	Microsoft Active Directory Information Disclosure (CVE-2020-0664)
High	5 Sep 2020	5 Sep 2020	CPAI-2020-0748			Online Shopping Alphaware Authentication Bypass
Medium	5 Sep 2020	5 Sep 2020	CPAI-2018-1597		CVE-2018-17463	Google Chrome V8 Remote Code Execution (CVE-2018-17463)
High	5 Sep 2020	5 Sep 2020	CPAI-2020-0805			WordPress NextGen Gallery Sell Photo Plugin Cross Site Scripting
Critical	5 Sep 2020	5 Sep 2020	CPAI-2020-0836		CVE-2020-10621	Advantech WebAccess NMS ConfigRestoreAction Arbitrary File Upload (CVE-2020-10621)
High	2 Sep 2020	2 Sep 2020	CPAI-2020-0735			Elaniin CMS Authentication Bypass
High	2 Sep 2020	2 Sep 2020	CPAI-2017-1060		CVE-2017-14702	ERS Data System Remote Code Execution (CVE-2017-14702)
High	1 Sep 2020	1 Sep 2020	CPAI-2020-0745		CVE-2020-15038	WordPress SeedProd Plugin Persistent Cross-Site Scripting (CVE-2020-15038)
Critical	1 Sep 2020	1 Sep 2020	CPAI-2020-0769		CVE-2020-13404	Atos Magento Command Injection (CVE-2020-13404)
High	1 Sep 2020	1 Sep 2020	CPAI-2020-0820		CVE-2020-3249	Cisco UCS Director saveWindowsNetworkConfig Directory Traversal (CVE-2020-3249)
High	1 Sep 2020	1 Sep 2020	CPAI-2017-1063		CVE-2017-8779	RPCbind XDR Parsing Memory Exhaustion Denial of Service (CVE-2017-8779)
High	1 Sep 2020	1 Sep 2020	CPAI-2020-0823		CVE-2020-3248	Cisco UCS Director saveStaticConfig Directory Traversal (CVE-2020-3248)
Medium	31 Aug 2020	31 Aug 2020	CPAI-2020-0744		CVE-2020-9495	Apache Archiva Command Injection (CVE-2020-9495)
Critical	27 Aug 2020	27 Aug 2020	CPAI-2020-0824		CVE-2020-4212	IBM Spectrum Protect Plus hfpackage Command Injection (CVE-2020-4212)
High	25 Aug 2020	25 Aug 2020	CPAI-2020-0739		CVE-2020-13641	WordPress Real-Time Find and Replace Plugin Cross-Site Scripting (CVE-2020-13641)
Critical	25 Aug 2020	25 Aug 2020	CPAI-2019-2209		CVE-2019-17638	Jenkins Jetty Buffer Overflow (CVE-2019-17638)
High	25 Aug 2020	25 Aug 2020	CPAI-2020-0811			VBulletin Persistent Cross Site Scripting
Medium	24 Aug 2020	24 Aug 2020	CPAI-2020-0802		CVE-2020-6514	Google Chrome Heap Corruption (CVE-2020-6514)
High	18 Aug 2020	18 Aug 2020	CPAI-2020-0755			WordPress Newsletter Plugin Command Injection
High	17 Aug 2020	17 Aug 2020	CPAI-2020-0702		CVE-2020-7014	Elasticsearch Privilege Escalation (CVE-2020-7014)
High	17 Aug 2020	17 Aug 2020	CPAI-2020-0720		CVE-2020-3187	Cisco Firepower Threat Defense Directory Traversal (CVE-2020-3187)
High	16 Aug 2020	16 Aug 2020	CPAI-2020-0791	Adobe APSB20-48	CVE-2020-9711	Adobe Acrobat and Reader Memory Corruption (APSB20-48: CVE-2020-9711)
High	16 Aug 2020	16 Aug 2020	CPAI-2020-0793	Adobe APSB20-48	CVE-2020-9713	Adobe Acrobat and Reader Invalid Memory Access (APSB20-48: CVE-2020-9713)
High	16 Aug 2020	16 Aug 2020	CPAI-2020-0795	Adobe APSB20-48	CVE-2020-9705	Adobe Acrobat and Reader Out-of-Bounds Read (APSB20-48: CVE-2020-9705)
High	12 Aug 2020	12 Aug 2020	CPAI-2020-0773	Adobe APSB20-48	CVE-2020-9720	Adobe Acrobat and Reader Out-Of-Bounds Read (APSB20-48: CVE-2020-9720)
High	12 Aug 2020	12 Aug 2020	CPAI-2020-0776	Adobe APSB20-48	CVE-2020-9721	Adobe Acrobat and Reader Use-After-Free (APSB20-48: CVE-2020-9721)