Home / 2020 Advisories Archive

2020 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
High	20 Jun 2020	20 Jun 2020	CPAI-2020-0517		CVE-2020-13851 CVE-2020-13852 CVE-2020-13855	Pandora FMS Remote Code Execution (CVE-2020-13851; CVE-2020-13852; CVE-2020-13855)
High	20 Jun 2020	20 Jun 2020	CPAI-2020-0520		CVE-2020-13231	Cacti Cross-Site Scripting (CVE-2020-13231)
High	20 Jun 2020	20 Jun 2020	CPAI-2020-0526			Netgear R7000 Router Remote Code Execution
Medium	20 Jun 2020	20 Jun 2020	CPAI-2017-1051		CVE-2017-1672	IBM Tivoli Key Lifecycle Manager Cross-Site Request Forgery (CVE-2017-1672)
Critical	20 Jun 2020	20 Jun 2020	CPAI-2020-0536		CVE-2020-12116	Zoho ManageEngine Directory Traversal (CVE-2020-12116)
High	20 Jun 2020	20 Jun 2020	CPAI-2020-0537		CVE-2020-13818	Zoho ManageEngine Directory Traversal (CVE-2020-13818)
High	17 Jun 2020	17 Jun 2020	CPAI-2020-0490		CVE-2020-10957	Dovecot Null Pointer Dereference (CVE-2020-10957)
Medium	17 Jun 2020	17 Jun 2020	CPAI-2020-0492		CVE-2020-10967	Dovecot Denial of Service (CVE-2020-10967)
High	17 Jun 2020	17 Jun 2020	CPAI-2020-0530			Advantech WebAccess SCADA Arbitrary File Deletion
High	17 Jun 2020	17 Jun 2020	CPAI-2020-0532		CVE-2020-12438	PHP-Fusion Administration banners.php Cross-Site Scripting (CVE-2020-12438)
High	16 Jun 2020	16 Jun 2020	CPAI-2020-0507		CVE-2020-7662 CVE-2020-7663	Websocket Extensions Denial of Service (CVE-2020-7662; CVE-2020-7663)
High	16 Jun 2020	16 Jun 2020	CPAI-2020-0478		CVE-2020-8617	ISC Bind Denial Of Service (CVE-2020-8617)
Medium	16 Jun 2020	16 Jun 2020	CPAI-2015-1056		CVE-2015-8376	Symphony CMS Cross-Site Scripting (CVE-2015-8376)
High	16 Jun 2020	16 Jun 2020	CPAI-2013-0785		CVE-2013-2559	Symphony CMS SQL Injection (CVE-2013-2559)
Medium	16 Jun 2020	16 Jun 2020	CPAI-2020-0510			Joomla J2Store SQL Injection
High	15 Jun 2020	15 Jun 2020	CPAI-2010-0628		CVE-2010-3457	Symphony CMS Cross-Site Scripting (CVE-2010-3457)
High	15 Jun 2020	15 Jun 2020	CPAI-2010-0629		CVE-2010-3458	Symphony CMS SQL Injection (CVE-2010-3458)
High	15 Jun 2020	15 Jun 2020	CPAI-2015-1055		CVE-2015-8766	Symphony CMS Cross-Site Scripting (CVE-2015-8766)
Medium	15 Jun 2020	15 Jun 2020	CPAI-2020-0509		CVE-2020-10667	Canon Oce Colorwave Printer Cross Site Scripting (CVE-2020-10667)
High	7 Apr 2020	14 Jun 2020	CPAI-2020-0151		CVE-2020-10386 CVE-2020-10389	Chadha PHPKB Remote Code Execution (CVE-2020-10386; CVE-2020-10389)
Medium	11 Jun 2020	11 Jun 2020	CPAI-2020-0487		CVE-2020-13693	Wordpress BBPress Plugin Privilege Escalation (CVE-2020-13693)
High	15 Jan 2020	10 Jun 2020	CPAI-2020-0009			IBM Ricoh Infoprint Printer Cross-Site Scripting
High	18 Mar 2020	10 Jun 2020	CPAI-2020-0142			Zyxel Cloud CNM SecuManager Cross Site Scripting
High	17 May 2020	10 Jun 2020	CPAI-2019-2052		CVE-2019-11839	NGINX NJS Heap-Based Buffer Overflow (CVE-2019-11839)
High	27 May 2020	10 Jun 2020	CPAI-2019-2051		CVE-2019-12208	NGINX NJS Heap-Based Buffer Overflow (CVE-2019-12208)
Medium	17 May 2020	10 Jun 2020	CPAI-2019-2058		CVE-2019-11837	NGINX NJS Denial of Service (CVE-2019-11837)
High	17 May 2020	10 Jun 2020	CPAI-2019-2061		CVE-2019-13067	NGINX NJS Buffer Overflow (CVE-2019-13067)
High	27 May 2020	10 Jun 2020	CPAI-2019-2059		CVE-2019-12207	NGINX NJS Heap-Based Buffer Overflow (CVE-2019-12207)
High	17 May 2020	10 Jun 2020	CPAI-2019-2069		CVE-2019-11838	NGINX NJS Heap-Based Buffer Overflow (CVE-2019-11838)
High	27 May 2020	10 Jun 2020	CPAI-2019-2068		CVE-2019-12206	NGINX NJS Heap-Based Buffer Overflow (CVE-2019-12206)
High	10 Jun 2020	10 Jun 2020	CPAI-2020-0477		CVE-2020-12800	WordPress Drag And Drop Plugin Remote Code Execution (CVE-2020-12800)
High	8 Jun 2020	10 Jun 2020	CPAI-2020-0491		CVE-2020-3956	VMware Cloud Director Remote Code Execution (CVE-2020-3956)
High	10 Jun 2020	10 Jun 2020	CPAI-2020-0501		CVE-2020-6109	Zoom Client Arbitrary File Write (CVE-2020-6109)
Critical	9 Jun 2020	9 Jun 2020	CPAI-2020-0451	Microsoft CVE-2020-1216	CVE-2020-1216	Microsoft VBScript Remote Code Execution (CVE-2020-1216)
Critical	9 Jun 2020	9 Jun 2020	CPAI-2020-0452	Microsoft CVE-2020-1213	CVE-2020-1213	Microsoft VBScript Remote Code Execution (CVE-2020-1213)
Critical	9 Jun 2020	9 Jun 2020	CPAI-2020-0455	Microsoft CVE-2020-1260	CVE-2020-1260	Microsoft VBScript Remote Code Execution (CVE-2020-1260)
High	9 Jun 2020	9 Jun 2020	CPAI-2020-0456	Microsoft CVE-2020-1215	CVE-2020-1215	Microsoft VBScript Remote Code Execution (CVE-2020-1215)
High	9 Jun 2020	9 Jun 2020	CPAI-2020-0457	Microsoft CVE-2020-1230	CVE-2020-1230	Microsoft VBScript Remote Code Execution (CVE-2020-1230)
High	9 Jun 2020	9 Jun 2020	CPAI-2020-0458	Microsoft CVE-2020-1214	CVE-2020-1214	Microsoft VBScript Remote Code Execution (CVE-2020-1214)
Critical	9 Jun 2020	9 Jun 2020	CPAI-2020-0483		CVE-2020-1219	Microsoft Browser Memory Corruption (CVE-2020-1219)
High	9 Jun 2020	9 Jun 2020	CPAI-2020-0493		CVE-2020-1284	Microsoft Windows SMB Driver Out of Bounds Read (CVE-2020-1284)
High	9 Jun 2020	9 Jun 2020	CPAI-2020-0494		CVE-2020-1301	Microsoft Windows SMBv1 Driver Integer Overflow Denial Of Service (CVE-2020-1301)
Medium	8 Jun 2020	8 Jun 2020	CPAI-2020-0427		CVE-2020-12629	osTicket Cross-Site Scripting (CVE-2020-12629)
High	8 Jun 2020	8 Jun 2020	CPAI-2020-0436		CVE-2020-10173	Comtrend Command Injection (CVE-2020-10173)
Critical	8 Jun 2020	8 Jun 2020	CPAI-2019-2143		CVE-2019-7194 CVE-2019-7195	QNAP Photo Station Authentication Bypass (CVE-2019-7195; CVE-2019-7194)
Critical	8 Jun 2020	8 Jun 2020	CPAI-2019-2144		CVE-2019-7193	QNAP QTS Remote Command Injection (CVE-2019-7193)
High	8 Jun 2020	8 Jun 2020	CPAI-2020-0476		CVE-2020-11108	Pi-hole Remote Code Execution (CVE-2020-11108)
High	8 Jun 2020	8 Jun 2020	CPAI-2020-0480			Kuicms PHP Persistent Cross-Site Scripting
High	8 Jun 2020	8 Jun 2020	CPAI-2020-0486		CVE-2018-17022	Asus GT-AC5300 Stack Buffer Overflow (CVE-2018-17022)
High	5 Jun 2020	5 Jun 2020	CPAI-2020-0496		CVE-2020-11531	Zoho ManageEngine DataSecurity Plus Directory Traversal (CVE-2020-11531)