Home / 2021 Advisories Archive

2021 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
Critical	13 Jun 2021	13 Jun 2021	CPAI-2020-3367		CVE-2020-18178	HongCMS Directory Traversal (CVE-2020-18178)
Critical	9 Jun 2021	9 Jun 2021	CPAI-2021-0382	Microsoft CVE-2021-31959	CVE-2021-31959	Microsoft Scripting Engine Memory Corruption (CVE-2021-31959)
High	9 Jun 2021	9 Jun 2021	CPAI-2021-0381	Microsoft CVE-2021-33739	CVE-2021-33739	Microsoft DWM Core Library Elevation of Privilege (CVE-2021-33739)
Critical	9 Jun 2021	9 Jun 2021	CPAI-2019-2465		CVE-2019-19208	Codiad Web IDE Command Injection (CVE-2019-19208)
High	9 Jun 2021	9 Jun 2021	CPAI-2021-0257		CVE-2021-26827	TP-Link WR2041 Buffer Overflow (CVE-2021-26827)
High	8 Jun 2021	8 Jun 2021	CPAI-2021-0370	Adobe APSB21-37	CVE-2021-28554	Adobe Acrobat Reader DC Path Join Out of Bounds Read (APSB21-37: CVE-2021-28554)
High	8 Jun 2021	8 Jun 2021	CPAI-2021-0318	Microsoft CVE-2021-31956	CVE-2021-31956	Microsoft Windows NTFS Elevation of Privilege (CVE-2021-31956)
High	8 Jun 2021	8 Jun 2021	CPAI-2021-0317	Microsoft CVE-2021-31199	CVE-2021-31199	Microsoft Windows rsaenh.dll Elevation of Privilege (CVE-2021-31199)
High	8 Jun 2021	8 Jun 2021	CPAI-2021-0316	Microsoft CVE-2021-31955	CVE-2021-31955	Microsoft Windows Kernel Information Disclosure (CVE-2021-31955)
High	8 Jun 2021	8 Jun 2021	CPAI-2021-0315	Microsoft CVE-2021-31954	CVE-2021-31954	Microsoft Windows Common Log File System Driver Elevation of Privilege (CVE-2021-31954)
High	8 Jun 2021	8 Jun 2021	CPAI-2021-0314	Microsoft CVE-2021-31201	CVE-2021-31201	Microsoft Windows dssenh.dll Elevation of Privilege (CVE-2021-31201)
High	8 Jun 2021	8 Jun 2021	CPAI-2021-0312	Microsoft CVE-2021-31952	CVE-2021-31952	Microsoft Windows Kernel-Mode Driver Elevation of Privilege (CVE-2021-31952)
High	21 Apr 2021	6 Jun 2021	CPAI-2020-3336		CVE-2020-15688	GoAhead Web Server Authentication Bypass (CVE-2020-15688)
High	1 Jun 2021	1 Jun 2021	CPAI-2021-0326		CVE-2021-30638	Apache Tapestry Information Disclosure (CVE-2021-30638)
High	1 Jun 2021	1 Jun 2021	CPAI-2021-0325		CVE-2021-29447	WordPress Core External Entity Injection (CVE-2021-29447)
Medium	1 Jun 2021	1 Jun 2021	CPAI-2021-0303		CVE-2021-24245	WordPress Stop Spammers Plugin Cross Site Scripting (CVE-2021-24245)
Critical	15 Feb 2021	1 Jun 2021	CPAI-2020-3221		CVE-2020-7200	HPE Insight Manager Insecure Deserialization (CVE-2020-7200)
High	31 May 2021	31 May 2021	CPAI-2021-0322		CVE-2021-21648	Jenkins Credentials Plugin Cross-Site Scripting (CVE-2021-21648)
High	31 May 2021	31 May 2021	CPAI-2021-0310		CVE-2021-21153	Google Chrome Buffer Overflow (CVE-2021-21153)
Critical	31 May 2021	31 May 2021	CPAI-2021-0301		CVE-2021-29203	HPE Edgeline Infrastructure Manager Authentication Bypass (CVE-2021-29203)
High	30 May 2021	30 May 2021	CPAI-2009-0538		CVE-2009-3103	Microsoft Windows Server Remote Code Execution (CVE-2009-3103)
High	27 May 2021	27 May 2021	CPAI-2021-0311			Drupal Core Hex Rendering Remote Code Execution
High	27 May 2021	27 May 2021	CPAI-2018-1748		CVE-2018-19422	Subrion CMS Remote Code Execution (CVE-2018-19422)
Critical	23 May 2021	23 May 2021	CPAI-2020-3353		CVE-2020-7115	Aruba Networks ClearPass Policy Manager Remote Code Execution (CVE-2020-7115)
High	23 May 2021	23 May 2021	CPAI-2020-3343		CVE-2020-14295	Cacti SQL Injection (CVE-2020-14295)
Critical	18 May 2021	18 May 2021	CPAI-2021-0289		CVE-2021-31755 CVE-2021-31756 CVE-2021-31757 CVE-2021-31758	Tenda Routers Buffer Overflow (CVE-2021-31755; CVE-2021-31756; CVE-2021-31757; CVE-2021-31758)
Critical	18 May 2021	18 May 2021	CPAI-2020-3357		CVE-2020-24918	Ambarella Oryx RTSP Server Buffer Overflow (CVE-2020-24918)
Critical	18 May 2021	18 May 2021	CPAI-2020-3352		CVE-2020-19114	Projectworlds Online Book Store SQL Injection (CVE-2020-19114)
High	18 May 2021	18 May 2021	CPAI-2021-0298		CVE-2021-2182	Oracle E-Business Suite iStore Information Disclosure (CVE-2021-2182)
High	18 May 2021	18 May 2021	CPAI-2021-0297		CVE-2021-27933	Netgate pfSense Cross-Site Scripting (CVE-2021-27933)
High	18 May 2021	18 May 2021	CPAI-2021-0296		CVE-2021-21622	Jenkins Artifact Repository Parameter Plugin Cross-Site Scripting (CVE-2021-21622)
Critical	12 May 2021	12 May 2021	CPAI-2021-0285		CVE-2021-30228 CVE-2021-30230 CVE-2021-30231 CVE-2021-30232 CVE-2021-30233 CVE-2021-30234	China Mobile An Lianbao WF-1 Router Command Injection (CVE-2021-30231; CVE-2021-30228; CVE-2021-30230; CVE-2021-30232; CVE-2021-30233; CVE-2021-30234)
High	12 May 2021	12 May 2021	CPAI-2019-2462		CVE-2019-15949	Nagios XI Remote Code Execution (CVE-2019-15949)
High	11 May 2021	11 May 2021	CPAI-2021-0279	Adobe APSB21-29	CVE-2021-28560	Adobe Acrobat and Reader Heap-based Buffer Overflow (APSB21-29: CVE-2021-28560)
High	11 May 2021	11 May 2021	CPAI-2021-0262	Microsoft CVE-2021-31181	CVE-2021-31181	Microsoft SharePoint Remote Code Execution (CVE-2021-31181)
High	11 May 2021	11 May 2021	CPAI-2021-0261	Microsoft CVE-2021-31170	CVE-2021-31170	Microsoft Windows Graphics Component Elevation of Privilege (CVE-2021-31170)
Critical	11 May 2021	11 May 2021	CPAI-2021-0260	Microsoft CVE-2021-26419	CVE-2021-26419	Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2021-26419)
High	11 May 2021	11 May 2021	CPAI-2021-0259	Microsoft CVE-2021-31188	CVE-2021-31188	Microsoft Windows Graphics Component Elevation of Privilege (CVE-2021-31188)
Critical	10 May 2021	10 May 2021	CPAI-2020-3344		CVE-2020-22807	Vtiger SQL Injection (CVE-2020-22807)
High	10 May 2021	10 May 2021	CPAI-2021-0276		CVE-2021-21220	Google Chrome Remote Code Execution (CVE-2021-21220)
High	10 May 2021	10 May 2021	CPAI-2021-0275		CVE-2021-28482	Microsoft Exchange Server Remote Code Execution (CVE-2021-28482)
High	10 May 2021	10 May 2021	CPAI-2015-1473		CVE-2015-4051	Beckhoff IPC Diagnostics Denial Of Service (CVE-2015-4051)
High	5 May 2021	5 May 2021	CPAI-2004-0217		CVE-2004-1925	TikiWiki Project SQL Injection (CVE-2004-1925)
High	2 May 2021	2 May 2021	CPAI-2021-0264			WordPress WPGraphQL Plugin Denial of Service
Critical	2 May 2021	2 May 2021	CPAI-2020-3339		CVE-2020-29045	WordPress Food And Drink Menu Plugin Remote Code Execution (CVE-2020-29045)
High	2 May 2021	2 May 2021	CPAI-2021-0258			Fake Software Update Webpage
Critical	2 May 2021	2 May 2021	CPAI-2020-3337		CVE-2020-29047	WordPress Hotel Booking Plugin Remote Code Execution (CVE-2020-29047)
Critical	2 May 2021	2 May 2021	CPAI-2021-0254		CVE-2021-27691	Tenda G0 Routers Command Injection (CVE-2021-27691)
High	2 May 2021	2 May 2021	CPAI-2020-3321		CVE-2020-29599	ImageMagick Command Injection (CVE-2020-29599)
Medium	29 Apr 2021	29 Apr 2021	CPAI-2019-2461		CVE-2019-6215	Apple Safari Type Confusion (CVE-2019-6215)