Home / 2023 Advisories Archive

2023 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
Critical	9 May 2023	9 May 2023	CPAI-2023-0260	Microsoft CVE-2023-29325	CVE-2023-29325	Microsoft Windows OLE Remote Code Execution (CVE-2023-29325)
Critical	9 May 2023	9 May 2023	CPAI-2018-2392		CVE-2018-18006	Ricoh MyPrint Application Hardcoded Credentials (CVE-2018-18006)
Medium	8 May 2023	8 May 2023	CPAI-2020-3821		CVE-2020-13562	phpGACL Project Cross-Site Scripting (CVE-2020-13562)
Critical	8 May 2023	8 May 2023	CPAI-2022-1512		CVE-2022-43775	Delta DIAEnergie SQL Injection (CVE-2022-43775)
Medium	8 May 2023	8 May 2023	CPAI-2022-1511		CVE-2022-27498	Lansweeper Directory Traversal (CVE-2022-27498)
High	8 May 2023	8 May 2023	CPAI-2020-3819		CVE-2020-2852	Oracle Advanced Outbound Telephony Authentication Bypass (CVE-2020-2852)
Medium	8 May 2023	8 May 2023	CPAI-2022-1505		CVE-2022-4069	LibreNMS Cross-Site Scripting (CVE-2022-4069)
Medium	8 May 2023	8 May 2023	CPAI-2021-1739		CVE-2021-27907	Apache Superset Cross-Site Scripting (CVE-2021-27907)
High	8 May 2023	8 May 2023	CPAI-2021-1738		CVE-2021-33733	Siemens SINEC NMS Command Injection (CVE-2021-33733)
High	8 May 2023	8 May 2023	CPAI-2020-3818		CVE-2020-25237	Siemens Multiple Products Arbitrary File Write (CVE-2020-25237)
Medium	8 May 2023	8 May 2023	CPAI-2022-1504		CVE-2022-41651	Delta DIAEnergie Cross-Site Scripting (CVE-2022-41651)
Medium	8 May 2023	8 May 2023	CPAI-2022-1503		CVE-2022-29273	Netgate pfSense Cross-Site Scripting (CVE-2022-29273)
Medium	8 May 2023	8 May 2023	CPAI-2022-1502		CVE-2022-41701	Delta DIAEnergie Cross-Site Scripting (CVE-2022-41701)
Critical	8 May 2023	8 May 2023	CPAI-2023-0286		CVE-2023-1671	Sophos Web Appliance Command Injection (CVE-2023-1671)
Critical	30 Apr 2023	8 May 2023	CPAI-2021-1712		CVE-2021-3781	Artifex Ghostscript Command Injection (CVE-2021-3781)
Critical	8 May 2023	8 May 2023	CPAI-2023-0270		CVE-2021-44152	Reprise License Manager Authentication Bypass (CVE-2021-44152)
Critical	8 May 2023	8 May 2023	CPAI-2021-1711		CVE-2021-40531	Sketch Remote Code Execution (CVE-2021-40531)
High	8 May 2023	8 May 2023	CPAI-2018-2390		CVE-2018-16286	LG SuperSign CMS Authentication Bypass (CVE-2018-16286)
High	5 Feb 2023	8 May 2023	CPAI-2019-2762		CVE-2019-16012	Cisco SD-WAN SQL Injection (CVE-2019-16012)
Critical	7 May 2023	7 May 2023	CPAI-2022-1499		CVE-2022-43672	Zoho Corp ManageEngine SQL Injection (CVE-2022-43672)
High	7 May 2023	7 May 2023	CPAI-2023-0297		CVE-2023-29516	XWiki Remote Code Execution (CVE-2023-29516)
High	7 May 2023	7 May 2023	CPAI-2022-1495		CVE-2022-41773	Delta DIAEnergie SQL Injection (CVE-2022-41773)
High	7 May 2023	7 May 2023	CPAI-2023-0296		CVE-2023-1658	Contec CONPROSYS HMI System CPostgreSQL.php SQL Injection (CVE-2023-1658)
High	7 May 2023	7 May 2023	CPAI-2021-1734		CVE-2021-45010	Tiny File Manager Directory Traversal (CVE-2021-45010)
High	7 May 2023	7 May 2023	CPAI-2021-1733		CVE-2021-31558	Delta Industrial Automation DIAEnergie Cross-Site Scripting (CVE-2021-31558)
High	7 May 2023	7 May 2023	CPAI-2021-1732		CVE-2021-35478	Nagios Log Server Audit Log And Alert History Cross-Site Scripting (CVE-2021-35478)
Critical	7 May 2023	7 May 2023	CPAI-2022-1492		CVE-2022-43774	Delta DIAEnergie SQL Injection (CVE-2022-43774)
High	7 May 2023	7 May 2023	CPAI-2021-1731		CVE-2021-23282	Eaton Intelligent Power Management2 Stored Cross-Site Scripting (CVE-2021-23282)
High	7 May 2023	7 May 2023	CPAI-2020-3817		CVE-2020-2871	Oracle Advanced Outbound Telephony Remote Code Execution (CVE-2020-2871)
High	7 May 2023	7 May 2023	CPAI-2022-1490		CVE-2022-4230	WordPress VeronaLabs WP Statistics Plugin SQL Injection (CVE-2022-4230)
Medium	7 May 2023	7 May 2023	CPAI-2022-1489		CVE-2022-43568	Splunk Cross-Site Scripting (CVE-2022-43568)
Medium	7 May 2023	7 May 2023	CPAI-2022-1488		CVE-2022-41702	Delta DIAEnergie Cross-Site Scripting (CVE-2022-41702)
High	7 May 2023	7 May 2023	CPAI-2020-3816		CVE-2020-16267	Zoho Corp ManageEngine Applications Manager SQL Injection (CVE-2020-16267)
Medium	7 May 2023	7 May 2023	CPAI-2023-0294		CVE-2023-25762	Jenkins Pipeline: Build Step Plugin Cross-Site Scripting (CVE-2023-25762)
High	7 May 2023	7 May 2023	CPAI-2022-1485		CVE-2022-42427	Centreon Web formContactGroup.php SQL Injection (CVE-2022-42427)
High	7 May 2023	7 May 2023	CPAI-2020-3815		CVE-2020-15419	Veeam ONE Firmware XML External Entity Injection (CVE-2020-15419)
High	7 May 2023	7 May 2023	CPAI-2022-1475		CVE-2022-25813	Apache OFBiz Remote Code Execution (CVE-2022-25813)
High	7 May 2023	7 May 2023	CPAI-2022-1474		CVE-2022-2560	EnterpriseDT CompleteFTP Server HttpFile Arbitrary File Deletion (CVE-2022-2560)
Medium	7 May 2023	7 May 2023	CPAI-2021-1727		CVE-2021-39906	GitLab Remote Code Execution (CVE-2021-39906)
Critical	7 May 2023	7 May 2023	CPAI-2021-1726		CVE-2021-26120	Smarty Remote Code Execution (CVE-2021-26120)
High	7 May 2023	7 May 2023	CPAI-2022-1473		CVE-2022-2138	Advantech iView Denial of Service (CVE-2022-2138)
High	7 May 2023	7 May 2023	CPAI-2022-1472		CVE-2022-22149	Lansweeper SQL Injection (CVE-2022-22149)
Medium	4 May 2023	4 May 2023	CPAI-2022-1470		CVE-2022-31698	VMware Multiple Products Denial of Service (CVE-2022-31698)
Critical	4 May 2023	4 May 2023	CPAI-2021-1723		CVE-2021-37539	Zoho Corp ManageEngine ADManager Plus Remote Code Execution (CVE-2021-37539)
High	4 May 2023	4 May 2023	CPAI-2021-1722		CVE-2021-22719	Schneider Electric C-Bus Toolkit Directory Traversal (CVE-2021-22719)
Critical	4 May 2023	4 May 2023	CPAI-2022-1468		CVE-2022-41772	Delta Infrasuite Device Master Directory Traversal (CVE-2022-41772)
Medium	4 May 2023	4 May 2023	CPAI-2021-1721		CVE-2021-25921	OpenEMR Cross-Site Scripting (CVE-2021-25921)
Critical	4 May 2023	4 May 2023	CPAI-2022-1465		CVE-2022-2992	GitLab Remote Code Execution (CVE-2022-2992)
Medium	4 May 2023	4 May 2023	CPAI-2021-1720		CVE-2021-21668	Jenkins Scriptler Plugin Cross-Site Scripting (CVE-2021-21668)
High	4 May 2023	4 May 2023	CPAI-2021-1719		CVE-2021-43942	Atlassian Jira Server and Data Center Issue Cross-Site Scripting (CVE-2021-43942)