Home / 2023 Advisories Archive

2023 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Industry Reference	Description
High	26 Jun 2023	26 Jun 2023	CPAI-2013-3805	CVE-2013-3539	Sony IP Cameras Cross-Site Request Forgery (CVE-2013-3539)
Medium	4 May 2023	26 Jun 2023	CPAI-2023-0268		AZORult Phishing Email Campaign
Critical	26 Jun 2023	26 Jun 2023	CPAI-2022-0553	CVE-2022-30136	Microsoft Windows Network File System Remote Code Execution (CVE-2022-30136)
High	25 Jun 2023	25 Jun 2023	CPAI-2023-0455	CVE-2023-27857	Rockwell Automation ThinManager Buffer Overflow (CVE-2023-27857)
High	25 Jun 2023	25 Jun 2023	CPAI-2017-1667	CVE-2017-7310	Flexense Multiple Products Stack Buffer Overflow (CVE-2017-7310)
Critical	28 May 2023	25 Jun 2023	CPAI-2023-0339	CVE-2023-26802	DCN DCBI-Netlog-LAB Authentication Bypass (CVE-2023-26802)
Medium	8 May 2023	25 Jun 2023	CPAI-2023-0301	CVE-2023-29489	cPanel Reflected Cross Site Scripting (CVE-2023-29489)
Medium	25 Jun 2023	25 Jun 2023	CPAI-2020-3784	CVE-2020-35774	Twitter-server Cross-Site Scripting (CVE-2020-35774)
Critical	25 Jun 2023	25 Jun 2023	CPAI-2021-1677	CVE-2021-25114	WordPress Stranger Studios Paid Memberships Pro Plugin SQL Injection (CVE-2021-25114)
High	25 Jun 2023	25 Jun 2023	CPAI-2021-1642	CVE-2021-42727	Adobe RoboHelp Server Buffer Overflow (CVE-2021-42727)
Critical	22 Jun 2023	22 Jun 2023	CPAI-2023-0431	CVE-2023-25157	OSGeo GeoServer SQL Injection (CVE-2023-25157)
High	22 Jun 2023	22 Jun 2023	CPAI-2016-1223	CVE-2016-4054	Squid Buffer Overflow (CVE-2016-4054)
High	21 Jun 2023	21 Jun 2023	CPAI-2023-0432	CVE-2023-1347	WordPress Customizer Export/Import Plugin Insecure Deserialization (CVE-2023-1347)
High	21 Jun 2023	21 Jun 2023	CPAI-2022-1654	CVE-2022-48194	TP-Link TL-WR902AC Arbitrary File Upload (CVE-2022-48194)
Critical	21 Jun 2023	21 Jun 2023	CPAI-2023-0421	CVE-2023-2564	Scanservjs Project Command Injection (CVE-2023-2564)
Critical	21 Jun 2023	21 Jun 2023	CPAI-2022-1630	CVE-2022-24260	VoIPmonitor SQL Injection (CVE-2022-24260)
High	20 Jun 2023	20 Jun 2023	CPAI-2022-1659	CVE-2022-36961	SolarWinds Orion Platform SQL Injection (CVE-2022-36961)
Critical	20 Jun 2023	20 Jun 2023	CPAI-2014-2502	CVE-2014-8389	AirLive IP Cameras Command Injection (CVE-2014-8389)
Critical	20 Jun 2023	20 Jun 2023	CPAI-2013-3807	CVE-2013-2568	Zavio IP Cameras Command Injection (CVE-2013-2568)
Critical	20 Jun 2023	20 Jun 2023	CPAI-2013-3806	CVE-2013-2573	TP-Link IP Cameras Command Injection (CVE-2013-2573)
Critical	20 Jun 2023	20 Jun 2023	CPAI-2017-1670	CVE-2017-14942	Intelbras WRN 150 Information Disclosure (CVE-2017-14942)
High	20 Jun 2023	20 Jun 2023	CPAI-2022-1650	CVE-2022-38772	ZohoCorp ManageEngine Remote Code Execution (CVE-2022-38772)
Medium	20 Jun 2023	20 Jun 2023	CPAI-2020-3855	CVE-2020-8821	Webmin Remote Code Execution (CVE-2020-8821)
Medium	20 Jun 2023	20 Jun 2023	CPAI-2023-0409	CVE-2023-34229	JetBrains TeamCity Cross-Site Scripting (CVE-2023-34229)
High	20 Jun 2023	20 Jun 2023	CPAI-2022-1624	CVE-2022-44635	Apache Fineract Directory Traversal (CVE-2022-44635)
Critical	20 Jun 2023	20 Jun 2023	CPAI-2022-1593	CVE-2022-36098	XWiki Remote Code Execution (CVE-2022-36098)
High	20 Jun 2023	20 Jun 2023	CPAI-2022-1591	CVE-2022-37961	Microsoft SharePoint Remote Code Execution (CVE-2022-37961)
Critical	20 Jun 2023	20 Jun 2023	CPAI-2021-1781	CVE-2021-37350	Nagios NagiosXI SQL Injection (CVE-2021-37350)
High	20 Jun 2023	20 Jun 2023	CPAI-2022-1581	CVE-2022-36958	SolarWinds Orion Platform Insecure Deserialization (CVE-2022-36958)
High	20 Jun 2023	20 Jun 2023	CPAI-2022-1580	CVE-2022-35823	Microsoft SharePoint Remote Code Execution (CVE-2022-35823)
Critical	20 Jun 2023	20 Jun 2023	CPAI-2021-1771	CVE-2021-37344	Nagios XI Switch Wizard Remote Code Execution (CVE-2021-37344)
Critical	20 Jun 2023	20 Jun 2023	CPAI-2020-3839	CVE-2020-26935	PhpMyAdmin SQL Injection (CVE-2020-26935)
High	20 Jun 2023	20 Jun 2023	CPAI-2020-3831	CVE-2020-13568	OpenEMR SQL Injection (CVE-2020-13568)
Medium	20 Jun 2023	20 Jun 2023	CPAI-2018-2405	CVE-2018-12998	Zoho Multiple Products Cross-Site Scripting (CVE-2018-12998)
High	20 Jun 2023	20 Jun 2023	CPAI-2005-0372	CVE-2005-1256	Ipswitch Multiple Products Buffer Overflow (CVE-2005-1256)
Critical	30 May 2023	20 Jun 2023	CPAI-2021-1756	CVE-2021-45456	Apache Kylin Command Injection (CVE-2021-45456)
High	15 Mar 2023	20 Jun 2023	CPAI-2022-1322	CVE-2022-40127	Apache Airflow Command Injection (CVE-2022-40127)
High	19 Jun 2023	19 Jun 2023	CPAI-2022-1658	CVE-2022-37024	Zoho Manageengine Remote Code Execution (CVE-2022-37024)
Medium	19 Jun 2023	19 Jun 2023	CPAI-2019-2925	CVE-2019-17120	WiKID Systems 2FA Enterprise Server Cross-Site Scripting (CVE-2019-17120)
Medium	19 Jun 2023	19 Jun 2023	CPAI-2022-1657	CVE-2022-4830	WordPress Paid Memberships Pro Plugin Cross-Site Scripting (CVE-2022-4830)
High	19 Jun 2023	19 Jun 2023	CPAI-2022-1656	CVE-2022-36099	XWiki Remote Code Execution (CVE-2022-36099)
Medium	19 Jun 2023	19 Jun 2023	CPAI-2020-3860	CVE-2020-5810	Umbraco CMS Cross-Site Scripting (CVE-2020-5810)
Critical	19 Jun 2023	19 Jun 2023	CPAI-2018-2421	CVE-2018-7512 CVE-2018-7516 CVE-2018-7520 CVE-2018-7524 CVE-2018-7528 CVE-2018-7532	Geutebruck IP Cameras Command Injection (CVE-2018-7512; CVE-2018-7516; CVE-2018-7520; CVE-2018-7524; CVE-2018-7528; CVE-2018-7532)
High	13 Jun 2023	19 Jun 2023	CPAI-2023-0395	CVE-2023-2114	WordPress NEX-Forms Plugin SQL Injection (CVE-2023-2114)
High	19 Jun 2023	19 Jun 2023	CPAI-2021-1783	CVE-2021-46378	D-Link DIR-850 Information Disclosure (CVE-2021-46378)
High	8 Jun 2023	19 Jun 2023	CPAI-2023-0346	CVE-2023-21547	Microsoft Windows Denial of Service (CVE-2023-21547)
High	8 Jun 2023	19 Jun 2023	CPAI-2023-0321	CVE-2023-31133	Ghost Foundation Ghost Remote Code Execution (CVE-2023-31133)
Medium	11 Jun 2023	19 Jun 2023	CPAI-2022-1525	CVE-2022-3562	LibreNMS Cross-Site Scripting (CVE-2022-3562)
High	15 May 2023	19 Jun 2023	CPAI-2023-0292	CVE-2023-29525	XWiki Privilege Escalation (CVE-2023-29525)
High	18 Jun 2023	18 Jun 2023	CPAI-2023-0418	CVE-2023-26976	Tenda AC6 Buffer Overflow (CVE-2023-26976)