Home / 2021 Advisories Archive

2021 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Industry Reference	Description
High	11 Apr 2021	11 Apr 2021	CPAI-2020-3315	CVE-2020-10583	Invigo Automatic Device Management Command Injection (CVE-2020-10583)
Critical	11 Apr 2021	11 Apr 2021	CPAI-2021-0210	CVE-2021-22652	Advantech iView Remote Code Execution (CVE-2021-22652)
Critical	11 Apr 2021	11 Apr 2021	CPAI-2020-3312	CVE-2020-6577	Zen Cart IT-Recht Kanzlei Plugin SQL Injection (CVE-2020-6577)
Critical	5 Apr 2021	5 Apr 2021	CPAI-2018-1742	CVE-2017-11366 CVE-2017-15689 CVE-2018-14009	Codiad Remote Code Execution (CVE-2018-14009; CVE-2017-11366; CVE-2017-15689)
High	5 Apr 2021	5 Apr 2021	CPAI-2020-3309	CVE-2020-23160	Pyres Termod4 Remote Code Execution (CVE-2020-23160)
High	5 Apr 2021	5 Apr 2021	CPAI-2020-3308	CVE-2020-27223	Eclipse Jetty Denial Of Service (CVE-2020-27223)
Critical	5 Apr 2021	5 Apr 2021	CPAI-2020-3306	CVE-2020-9020	Iteris Vantage Velocity Command Injection (CVE-2020-9020)
Critical	5 Apr 2021	5 Apr 2021	CPAI-2021-0158	CVE-2021-22502	Micro Focus Operations Bridge Reporter Remote Code Execution (CVE-2021-22502)
Critical	5 Apr 2021	5 Apr 2021	CPAI-2020-3299	CVE-2020-25787	Tiny Tiny RSS Remote Code Execution (CVE-2020-25787)
Medium	5 Apr 2021	5 Apr 2021	CPAI-2020-0747	CVE-2020-12108	Gnu Mailman Command Injection (CVE-2020-12108)
Critical	30 Mar 2021	30 Mar 2021	CPAI-2020-3284	CVE-2020-21224	Inspur ClusterEngine Remote Code Execution (CVE-2020-21224)
Medium	30 Mar 2021	30 Mar 2021	CPAI-2020-3254	CVE-2020-6390	Google Chrome Out of Bounds Read (CVE-2020-6390)
High	30 Mar 2021	30 Mar 2021	CPAI-2017-1169	CVE-2017-2775	NI LabVIEW Memory Corruption (CVE-2017-2775)
Medium	30 Mar 2021	30 Mar 2021	CPAI-2017-1168	CVE-2017-1000395	Jenkins Remote API Information Disclosure (CVE-2017-1000395)
Critical	30 Mar 2021	30 Mar 2021	CPAI-2017-1166	CVE-2017-2810	Tablib Databook Loading Functionality Remote Code Execution (CVE-2017-2810)
Critical	30 Mar 2021	30 Mar 2021	CPAI-2017-1163	CVE-2017-12556	HPE Intelligent Management Center Remote Code Execution (CVE-2017-12556)
Medium	30 Mar 2021	30 Mar 2021	CPAI-2020-0989	CVE-2020-6507	Google Chrome Heap Corruption (CVE-2020-6507)
High	28 Mar 2021	28 Mar 2021	CPAI-2021-0209		NUUO NVRmini 2 Remote Code Execution
Critical	28 Mar 2021	28 Mar 2021	CPAI-2019-2450	CVE-2019-7257	Linear eMerge Arbitrary File Upload (CVE-2019-7257)
High	28 Mar 2021	28 Mar 2021	CPAI-2021-0208		Tiki Wiki CMS Groupware Authentication Bypass
High	28 Mar 2021	28 Mar 2021	CPAI-2021-0207		EFS Easy Chat Server Information Disclosure
High	28 Mar 2021	28 Mar 2021	CPAI-2021-0206		Apache Tomcat mod_jk Buffer Overflow
High	28 Mar 2021	28 Mar 2021	CPAI-2021-0205		Sapido RB-1732 Routers Remote Code Execution
Critical	28 Mar 2021	28 Mar 2021	CPAI-2017-1179	CVE-2017-11435	Humax HG100R Routers Authentication Bypass (CVE-2017-11435)
High	28 Mar 2021	28 Mar 2021	CPAI-2015-1462	CVE-2015-4027	Acunetix Web Scanner Privilege Escalation (CVE-2015-4027)
Critical	28 Mar 2021	28 Mar 2021	CPAI-2019-2449	CVE-2019-16894	inoERP download.php Insecure Deserialization (CVE-2019-16894)
High	28 Mar 2021	28 Mar 2021	CPAI-2020-3307	CVE-2020-8495	Kronos Web Time And Attendance Privilege Escalation (CVE-2020-8495)
High	28 Mar 2021	28 Mar 2021	CPAI-2020-3304	CVE-2020-35223	Netgear ProSAFE Cross-Site Request Forgery (CVE-2020-35223)
High	28 Mar 2021	28 Mar 2021	CPAI-2020-3303	CVE-2020-35230	Netgear ProSAFE Integer Overflow (CVE-2020-35230)
High	28 Mar 2021	28 Mar 2021	CPAI-2020-3302	CVE-2020-35227	Netgear ProSAFE Buffer Overflow (CVE-2020-35227)
High	28 Mar 2021	28 Mar 2021	CPAI-2020-3301	CVE-2020-35228	Netgear ProSAFE Cross-Site Scripting (CVE-2020-35228)
High	28 Mar 2021	28 Mar 2021	CPAI-2020-3300	CVE-2020-26919	Netgear ProSAFE Remote Code Execution (CVE-2020-26919)
Critical	28 Mar 2021	28 Mar 2021	CPAI-2021-0155	CVE-2021-25830 CVE-2021-25831 CVE-2021-25833	ONLYOFFICE DocumentServer Remote Code Execution (CVE-2021-25831; CVE-2021-25830; CVE-2021-25833)
High	24 Feb 2021	28 Mar 2021	CPAI-2021-0091	CVE-2020-19165 CVE-2020-24219 CVE-2020-28477 CVE-2021-26747 CVE-2021-27328	Arbitrary Command Injection Over HTTP Traffic (CVE-2020-19165; CVE-2020-24219; CVE-2020-28477; CVE-2021-26747; CVE-2021-27328)
High	28 Mar 2021	28 Mar 2021	CPAI-2021-0037		RMI And Oracle WebLogic T3 Protocol Insecure Deserialization
High	24 Mar 2021	24 Mar 2021	CPAI-2021-0196	CVE-2021-3342	EPrints Arbitrary File Read (CVE-2021-3342)
Critical	24 Mar 2021	24 Mar 2021	CPAI-2021-0159		EPrints Scholix Remote Code Execution
Critical	24 Mar 2021	24 Mar 2021	CPAI-2021-0156	CVE-2021-26918	Probot Bot Type Confusion (CVE-2021-26918)
High	24 Mar 2021	24 Mar 2021	CPAI-2021-0154	CVE-2021-26704	EPrints Command Injection (CVE-2021-26704)
Critical	24 Mar 2021	24 Mar 2021	CPAI-2021-0151	CVE-2021-27964	SonLogger Arbitrary File Upload (CVE-2021-27964)
High	20 Mar 2021	20 Mar 2021	CPAI-2020-3294	CVE-2020-29134	TOTVS Fluig Platform Directory Traversal (CVE-2020-29134)
High	14 Mar 2021	20 Mar 2021	CPAI-2021-0146	CVE-2021-22992	F5 BIG-IP Buffer Overflow (CVE-2021-22992)
Critical	17 Mar 2021	17 Mar 2021	CPAI-2021-0143	CVE-2021-26476	EPrints Command Injection (CVE-2021-26476)
Critical	16 Mar 2021	16 Mar 2021	CPAI-2021-0136	CVE-2021-27314 CVE-2021-27315 CVE-2021-27316	Doctor Appointment System SQL Injection (CVE-2021-27314; CVE-2021-27315; CVE-2021-27316)
High	16 Mar 2021	16 Mar 2021	CPAI-2021-0131		Tiki Wiki CMS GroupWare Remote Code Execution
Critical	16 Mar 2021	16 Mar 2021	CPAI-2021-0130	CVE-2021-25779	Baby Care System SQL Injection (CVE-2021-25779)
High	16 Mar 2021	16 Mar 2021	CPAI-2021-0119		Apache Flink Remote Code Execution
Critical	16 Mar 2021	16 Mar 2021	CPAI-2021-0118	CVE-2021-26809	PHPGurukul Car Rental Arbitrary File Upload (CVE-2021-26809)
Medium	16 Mar 2021	16 Mar 2021	CPAI-2021-0117	CVE-2021-27403	Asus Askey Routers Cross-Site Scripting (CVE-2021-27403)
Medium	16 Mar 2021	16 Mar 2021	CPAI-2021-0115	CVE-2021-27370	Monicahq Monica Stored Cross-Site Scripting (CVE-2021-27370)