Home / 2021 Advisories Archive

2021 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
High	15 Mar 2021	15 Mar 2021	CPAI-2020-3296		CVE-2020-27989	Nagios XI Dashboard Tools Cross-Site Scripting (CVE-2020-27989)
Critical	15 Mar 2021	15 Mar 2021	CPAI-2015-1459		CVE-2015-8789	libEBML Use After Free (CVE-2015-8789)
High	15 Mar 2021	15 Mar 2021	CPAI-2020-3295		CVE-2020-13947	Apache ActiveMQ message.jsp Cross-Site Scripting (CVE-2020-13947)
High	15 Mar 2021	15 Mar 2021	CPAI-2015-1458		CVE-2015-2504	Microsoft .NET Framework Privilege Escalation (CVE-2015-2504)
Critical	14 Mar 2021	14 Mar 2021	CPAI-2021-0144			Web Servers Malicious Encoding Path Traversal
Critical	14 Mar 2021	14 Mar 2021	CPAI-2021-0132			SQL Servers Blind SQL Injection Techniques
Critical	14 Mar 2021	14 Mar 2021	CPAI-2020-3282		CVE-2020-25216	yWorks yEd Desktop Remote Code Execution (CVE-2020-25216)
Critical	23 Feb 2021	14 Mar 2021	CPAI-2021-0048			Suspicious Exploitation Tools Payload
High	10 Mar 2021	10 Mar 2021	CPAI-2020-3281		CVE-2020-35339	74CMS Remote Code Execution (CVE-2020-35339)
High	10 Mar 2021	10 Mar 2021	CPAI-2021-0096		CVE-2021-26822	Teachers Record Management System SQL Injection (CVE-2021-26822)
High	10 Mar 2021	10 Mar 2021	CPAI-2020-3274		CVE-2020-10209	Amino Communications Command Injection (CVE-2020-10209)
High	22 Feb 2021	10 Mar 2021	CPAI-2021-0086		CVE-2021-26201	CASAP Automated Enrollment System Authentication Bypass (CVE-2021-26201)
High	9 Mar 2021	9 Mar 2021	CPAI-2021-0133	Microsoft CVE-2021-27076	CVE-2021-27076	Microsoft SharePoint Server Remote Code Execution (CVE-2021-27076)
Critical	9 Mar 2021	9 Mar 2021	CPAI-2021-0104	Microsoft CVE-2021-26897	CVE-2021-26897	Microsoft Windows DNS Server Remote Code Execution (CVE-2021-26897)
High	9 Mar 2021	9 Mar 2021	CPAI-2021-0103	Microsoft CVE-2021-26877	CVE-2021-26877	Microsoft Windows DNS Server Remote Code Execution (CVE-2021-26877)
High	9 Mar 2021	9 Mar 2021	CPAI-2021-0097	Microsoft CVE-2021-26868	CVE-2021-26868	Microsoft Windows Graphics Component Elevation of Privilege (CVE-2021-26868)
Critical	8 Mar 2021	8 Mar 2021	CPAI-2019-2439		CVE-2019-25024	OpenRepeater Command Injection (CVE-2019-25024)
High	7 Mar 2021	7 Mar 2021	CPAI-2021-0089			Sony Playstation 4 Use-After-Free
Medium	1 Mar 2021	1 Mar 2021	CPAI-2015-1456		CVE-2015-7088	Apple Quicktime Remote Code Execution (CVE-2015-7088)
Medium	1 Mar 2021	1 Mar 2021	CPAI-2015-1455		CVE-2015-7089	Apple Quicktime Remote Code Execution (CVE-2015-7089)
High	24 Feb 2021	24 Feb 2021	CPAI-2020-3270		CVE-2020-28672	MonoCMS Remote Code Execution (CVE-2020-28672)
High	24 Feb 2021	24 Feb 2021	CPAI-2017-1170		CVE-2017-5941	Node.js Remote Code Execution (CVE-2017-5941)
Critical	24 Feb 2021	24 Feb 2021	CPAI-2020-3268		CVE-2020-18713	Rockoa SQL Injection (CVE-2020-18713)
Critical	24 Feb 2021	24 Feb 2021	CPAI-2020-3253		CVE-2020-18714	Rockoa SQL Injection (CVE-2020-18714)
High	24 Feb 2021	24 Feb 2021	CPAI-2021-0050			Linux Shellcode Command Injection
High	24 Feb 2021	24 Feb 2021	CPAI-2020-3210		CVE-2020-35276	EgavilanMedia ECM Address Book SQL Injection (CVE-2020-35276)
Critical	23 Feb 2021	23 Feb 2021	CPAI-2016-1142		CVE-2016-0942	Adobe Acrobat and Reader Remote Code Execution (CVE-2016-0942)
High	23 Feb 2021	23 Feb 2021	CPAI-2016-1141		CVE-2016-9091	Blue Coat ASG Command Injection (CVE-2016-9091)
High	23 Feb 2021	23 Feb 2021	CPAI-2016-1140		CVE-2016-1681	OpenJPEG Buffer Overflow (CVE-2016-1681)
Critical	23 Feb 2021	23 Feb 2021	CPAI-2020-3271		CVE-2020-28870	InoERP Remote Code Execution (CVE-2020-28870)
Critical	23 Feb 2021	23 Feb 2021	CPAI-2020-3269		CVE-2020-28871	Monitorr Remote Code Execution (CVE-2020-28871)
Critical	23 Feb 2021	23 Feb 2021	CPAI-2021-0088			Cobalt Strike Web Delivery Remote Code Execution
Critical	22 Feb 2021	22 Feb 2021	CPAI-2021-0087		CVE-2021-26754	WordPress wpDataTables Plugin SQL Injection (CVE-2021-26754)
High	22 Feb 2021	22 Feb 2021	CPAI-2020-3242		CVE-2020-35131	Cockpit CMS Remote Code Execution (CVE-2020-35131)
High	22 Feb 2021	22 Feb 2021	CPAI-2021-0022		CVE-2021-1167	Cisco Small Business Routers Denial Of Service (CVE-2021-1167)
High	21 Jan 2021	22 Feb 2021	CPAI-2020-3211		CVE-2020-35578	Nagios XI Remote Code Execution (CVE-2020-35578)
High	18 Feb 2021	18 Feb 2021	CPAI-2016-1139		CVE-2016-5563	Oracle Hospitality Opera Remote Code Execution (CVE-2016-5563)
Critical	18 Feb 2021	18 Feb 2021	CPAI-2021-0090			Command Prompt Injection Over HTTP
Critical	18 Feb 2021	18 Feb 2021	CPAI-2009-0528		CVE-2009-5156	Asmax Ar-804gu Router Command Injection (CVE-2009-5156)
High	18 Feb 2021	18 Feb 2021	CPAI-2021-0083			WordPress WP24 Domain Check Plugin Cross Site Scripting
High	18 Feb 2021	18 Feb 2021	CPAI-2021-0081		CVE-2021-25310	Belkin Linksys WRT160NL Command Injection (CVE-2021-25310)
High	18 Feb 2021	18 Feb 2021	CPAI-2021-0079			LiteSpeed Web Server Enterprise Command Injection
High	18 Feb 2021	18 Feb 2021	CPAI-2018-1735		CVE-2018-13381	Fortinet FortiOS SSL VPN Buffer Overflow (CVE-2018-13381)
Critical	18 Feb 2021	18 Feb 2021	CPAI-2020-3260		CVE-2020-25506	D-Link DNS-320 Command Injection (CVE-2020-25506)
Critical	18 Feb 2021	18 Feb 2021	CPAI-2020-3257		CVE-2020-18568	D-Link DSR-250 Command Injection (CVE-2020-18568)
Medium	18 Feb 2021	18 Feb 2021	CPAI-2019-2438		CVE-2019-16223	WordPress Core Cross Site Scripting (CVE-2019-16223)
Critical	18 Feb 2021	18 Feb 2021	CPAI-2021-0068		CVE-2021-3188	phpList Remote Code Execution (CVE-2021-3188)
Medium	3 Jan 2021	18 Feb 2021	CPAI-2020-1366		CVE-2020-21176 CVE-2020-25042 CVE-2020-26248 CVE-2020-26712 CVE-2020-28994 CVE-2020-29284 CVE-2020-6308 CVE-2021-25912	Arbitrary Code Injection Over HTTP Traffic (CVE-2020-21176; CVE-2020-25042; CVE-2020-26248; CVE-2020-26712; CVE-2020-28994; CVE-2020-29284; CVE-2020-6308; CVE-2021-25912)
Medium	16 Feb 2021	16 Feb 2021	CPAI-2016-1137		CVE-2016-8016	Intel Security VirusScan Enterprise Linux Information Disclosure (CVE-2016-8016)
Medium	16 Feb 2021	16 Feb 2021	CPAI-2016-1136		CVE-2016-8019	Intel Security VirusScan Enterprise Linux Cross-Site Scripting (CVE-2016-8019)