Home / 2023 Advisories Archive

2023 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
High	21 Mar 2023	21 Mar 2023	CPAI-2023-0133			Hancitor Phishing Email Campaign
Critical	21 Mar 2023	21 Mar 2023	CPAI-2019-2860		CVE-2019-7269	Linear eMerge Command Injection (CVE-2019-7269)
Critical	21 Mar 2023	21 Mar 2023	CPAI-2019-2850		CVE-2019-7266 CVE-2019-7268	Linear eMerge Arbitrary File Upload (CVE-2019-7266; CVE-2019-7268)
High	21 Mar 2023	21 Mar 2023	CPAI-2022-1362		CVE-2022-45275	Dynamic Transaction Queuing System Arbitrary File Upload (CVE-2022-45275)
Critical	21 Mar 2023	21 Mar 2023	CPAI-2021-1680		CVE-2021-34427	Eclipse BIRT Unrestricted File Upload (CVE-2021-34427)
Critical	21 Mar 2023	21 Mar 2023	CPAI-2019-2842		CVE-2019-7267	Linear eMerge Path Traversal (CVE-2019-7267)
High	19 Mar 2023	19 Mar 2023	CPAI-2023-0139			WordPress Job Manager Plugin Arbitrary File Upload
Medium	19 Mar 2023	19 Mar 2023	CPAI-2017-1627		CVE-2017-5040	Google Chrome Information Disclosure (CVE-2017-5040)
High	28 Feb 2023	16 Mar 2023	CPAI-2020-3742		CVE-2020-6541	Google Chrome Use After Free (CVE-2020-6541)
High	5 Feb 2023	16 Mar 2023	CPAI-2023-0060			Google Chrome Integer Overflow
Critical	15 Mar 2023	15 Mar 2023	CPAI-2019-2857		CVE-2019-13585	FANUC Robotics Virtual Robot Controller Buffer Overflow (CVE-2019-13585)
High	26 Feb 2023	15 Mar 2023	CPAI-2022-1239		CVE-2022-46071 CVE-2022-46127 CVE-2022-46472 CVE-2022-46946 CVE-2022-46947 CVE-2022-46949	Helmet Store Showroom Site SQL injection (CVE-2022-46071; CVE-2022-46127; CVE-2022-46472; CVE-2022-46946; CVE-2022-46947; CVE-2022-46949)
High	15 Mar 2023	15 Mar 2023	CPAI-2022-1213		CVE-2022-4732	Microweber Project Path Traversal (CVE-2022-4732)
Critical	15 Mar 2023	15 Mar 2023	CPAI-2019-2755		CVE-2019-10123	AIS logistics SQL Injection (CVE-2019-10123)
Medium	14 Mar 2023	14 Mar 2023	CPAI-2023-0126	Microsoft CVE-2023-24880	CVE-2023-24880	Microsoft Windows SmartScreen Security Feature Bypass (CVE-2023-24880)
High	13 Mar 2023	13 Mar 2023	CPAI-2023-0120			Matanbuchus Phishing Campaign
Medium	13 Mar 2023	13 Mar 2023	CPAI-2021-1585		CVE-2021-20323	Red Hat Keycloak Cross-Site Scripting (CVE-2021-20323)
High	3 Jan 2023	13 Mar 2023	CPAI-2018-2269		CVE-2018-18820	Icecast Server Stack Buffer Overflow (CVE-2018-18820)
Medium	12 Mar 2023	12 Mar 2023	CPAI-2020-3777		CVE-2020-8227	Nextcloud Desktop Client Path Traversal (CVE-2020-8227)
High	12 Mar 2023	12 Mar 2023	CPAI-2018-2339		CVE-2018-3758	Node.js Express Cart Directory Traversal (CVE-2018-3758)
High	9 Mar 2023	9 Mar 2023	CPAI-2017-1617		CVE-2017-8740	Microsoft Edge Memory Corruption (CVE-2017-8740)
Critical	9 Mar 2023	9 Mar 2023	CPAI-2022-1228		CVE-2022-38488	Logrocket Oauth2 Example SQL Injection (CVE-2022-38488)
High	9 Mar 2023	9 Mar 2023	CPAI-2019-2734		CVE-2019-6710 CVE-2019-7391	Zyxel Multiple Products Cross-Site Request Forgery (CVE-2019-7391; CVE-2019-6710)
High	8 Mar 2023	8 Mar 2023	CPAI-2023-0107			Astaroth Boleto Phishing Email Campaign
Critical	8 Mar 2023	8 Mar 2023	CPAI-2022-1326		CVE-2022-3900	WordPress Cooked Pro Plugin Insecure Deserialization (CVE-2022-3900)
Critical	8 Mar 2023	8 Mar 2023	CPAI-2021-1676		CVE-2021-43267	Linux Kernel TIPC Heap Overflow (CVE-2021-43267)
High	8 Mar 2023	8 Mar 2023	CPAI-2021-1628		CVE-2021-38001	Google Chrome V8 Type Confusion (CVE-2021-38001)
High	8 Mar 2023	8 Mar 2023	CPAI-2023-0068			uftpd Directory Traversal
High	7 Mar 2023	7 Mar 2023	CPAI-2023-0106			BazaLoader Phishing Email Campaign
Critical	7 Mar 2023	7 Mar 2023	CPAI-2022-1323		CVE-2022-46887	NexusPHP SQL Injection (CVE-2022-46887)
High	6 Mar 2023	6 Mar 2023	CPAI-2023-0110			Empire Python Launcher Remote Code Execution
Medium	6 Mar 2023	6 Mar 2023	CPAI-2022-1329		CVE-2022-46889	NexusPHP Cross Site Scripting (CVE-2022-46889)
High	5 Mar 2023	5 Mar 2023	CPAI-2023-0095			Rhadamanthys Notepad++ Phishing Campaign
High	2 Mar 2023	2 Mar 2023	CPAI-2022-1184		CVE-2022-43551	Haxx Curl Authentication Bypass (CVE-2022-43551)
High	28 Feb 2023	28 Feb 2023	CPAI-2022-1244		CVE-2022-45957	ZTE ZXHN Stack Overflow (CVE-2022-45957)
High	28 Feb 2023	28 Feb 2023	CPAI-2023-0094		CVE-2023-25194	Apache Kafka Remote Code Execution (CVE-2023-25194)
Medium	28 Feb 2023	28 Feb 2023	CPAI-2018-2318		CVE-2018-13361	TerraMaster TOS Improper Access Control (CVE-2018-13361)
High	28 Feb 2023	28 Feb 2023	CPAI-2020-3722		CVE-2020-14421 CVE-2020-14950	aaPanel Command Injection (CVE-2020-14421; CVE-2020-14950)
Critical	9 Feb 2023	28 Feb 2023	CPAI-2022-1181		CVE-2022-45709 CVE-2022-45711 CVE-2022-45717	IP-COM M50 Command Injection (CVE-2022-45709; CVE-2022-45711; CVE-2022-45717)
High	27 Feb 2023	27 Feb 2023	CPAI-2022-1157		CVE-2022-47745	EasySoft ZenTao SQL Injection (CVE-2022-47745)
Critical	26 Feb 2023	26 Feb 2023	CPAI-2022-1236		CVE-2022-4120	WordPress Stop Spammers Security Plugin Insecure Deserialization (CVE-2022-4120)
High	23 Feb 2023	23 Feb 2023	CPAI-2023-0088			Bandidos Phishing Email Campaign
High	23 Feb 2023	23 Feb 2023	CPAI-2022-1225		CVE-2022-37155	SPIP Remote Code Execution (CVE-2022-37155)
High	22 Feb 2023	22 Feb 2023	CPAI-2022-1219		CVE-2022-45926	OpenText Content Suite Server-Side Request Forgery (CVE-2022-45926)
High	22 Feb 2023	22 Feb 2023	CPAI-2022-1218		CVE-2022-45925	OpenText Content Suite Information Disclosure (CVE-2022-45925)
High	22 Feb 2023	22 Feb 2023	CPAI-2022-1182		CVE-2022-4874	Netcomm Authentication Bypass (CVE-2022-4874)
High	22 Feb 2023	22 Feb 2023	CPAI-2022-1154		CVE-2022-38393	Asus RT-AX82U Denial Of Service (CVE-2022-38393)
High	22 Feb 2023	22 Feb 2023	CPAI-2020-3669		CVE-2020-13432	Rejetto HTTP File Server Buffer Overflow (CVE-2020-13432)
Critical	21 Feb 2023	21 Feb 2023	CPAI-2020-3734		CVE-2020-35326	inxedu SQL Injection (CVE-2020-35326)
High	21 Feb 2023	21 Feb 2023	CPAI-2020-3627		CVE-2020-10931	Memcached Denial of Service (CVE-2020-10931)