Home / 2023 Advisories Archive

2023 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Industry Reference	Description
High	5 Feb 2023	5 Feb 2023	CPAI-2019-2749	CVE-2019-0235	Apache OFBiz Cross-Site Request Forgery (CVE-2019-0235)
High	5 Feb 2023	5 Feb 2023	CPAI-2019-2747	CVE-2019-12480	BACnet Stack Denial of Service (CVE-2019-12480)
Critical	1 Feb 2023	2 Feb 2023	CPAI-2022-1167	CVE-2022-31706	VMware vRealize Log Insight Directory Traversal (CVE-2022-31706)
Medium	1 Feb 2023	2 Feb 2023	CPAI-2022-1164	CVE-2022-31711	VMware vRealize Log Insight Information Disclosure (CVE-2022-31711)
High	2 Feb 2023	2 Feb 2023	CPAI-2019-2763	CVE-2019-13359	Control WebPanel Authentication Bypass (CVE-2019-13359)
High	2 Feb 2023	2 Feb 2023	CPAI-2019-2740	CVE-2019-6967	AirTies Air5341 Cross-Site Request Forgery (CVE-2019-6967)
High	1 Feb 2023	1 Feb 2023	CPAI-2022-1152	CVE-2022-4324	WordPress Custom Field Template Plugin Insecure Deserialization (CVE-2022-4324)
Critical	1 Feb 2023	1 Feb 2023	CPAI-2019-2761	CVE-2019-17270	Yachtcontrol Command Injection (CVE-2019-17270)
Critical	1 Feb 2023	1 Feb 2023	CPAI-2020-3670	CVE-2020-26525	Damstra Technology Smart Asset SQL Injection (CVE-2020-26525)
Critical	1 Feb 2023	1 Feb 2023	CPAI-2018-2296	CVE-2018-17431	Comodo Unified Threat Management Firewall Command Injection (CVE-2018-17431)
High	1 Feb 2023	1 Feb 2023	CPAI-2023-0036	CVE-2023-0048	daloRADIUS Project Code Injection (CVE-2023-0048)
Medium	31 Jan 2023	31 Jan 2023	CPAI-2018-2302	CVE-2018-10700	Moxa AWK-3121 Cross Site Scripting (CVE-2018-10700)
High	31 Jan 2023	31 Jan 2023	CPAI-2021-1563	CVE-2021-30558	Google Chrome Authentication Bypass (CVE-2021-30558)
High	31 Jan 2023	31 Jan 2023	CPAI-2021-1562	CVE-2021-32924	Invision Community Remote Code Execution (CVE-2021-32924)
High	31 Jan 2023	31 Jan 2023	CPAI-2019-2759	CVE-2019-11229	Gitea Command Injection (CVE-2019-11229)
Critical	31 Jan 2023	31 Jan 2023	CPAI-2018-2300	CVE-2018-6583	Joomla! Timetable Responsive Schedule Component SQL Injection (CVE-2018-6583)
Critical	31 Jan 2023	31 Jan 2023	CPAI-2018-2298	CVE-2018-6006	Joomla! JS Autoz Component SQL Injection (CVE-2018-6006)
Critical	31 Jan 2023	31 Jan 2023	CPAI-2018-2297	CVE-2018-5988	Flexible Poll SQL Injection (CVE-2018-5988)
High	31 Jan 2023	31 Jan 2023	CPAI-2018-2295	CVE-2018-10693 CVE-2018-10695 CVE-2018-10701 CVE-2018-10703	Moxa AWK-3121 Buffer Overflow (CVE-2018-10693; CVE-2018-10695; CVE-2018-10701; CVE-2018-10703)
High	30 Jan 2023	30 Jan 2023	CPAI-2022-1144	CVE-2022-4043	WordPress Custom Admin Interface Plugin Insecure Deserialization (CVE-2022-4043)
High	29 Jan 2023	29 Jan 2023	CPAI-2023-0048		ISC BIND Amplification Denial of Service
Medium	29 Jan 2023	29 Jan 2023	CPAI-2020-3676	CVE-2020-25687	DNSmasq Sort Out-of-Bounds Write (CVE-2020-25687)
High	29 Jan 2023	29 Jan 2023	CPAI-2020-3675	CVE-2020-36221	OpenLDAP slapd Integer Underflow (CVE-2020-36221)
High	29 Jan 2023	29 Jan 2023	CPAI-2022-1150	CVE-2022-34324	Sage XRT Business Exchange SQL Injection (CVE-2022-34324)
High	29 Jan 2023	29 Jan 2023	CPAI-2022-1149	CVE-2022-43970	Linksys WRT54GL Buffer Overflow (CVE-2022-43970)
Critical	29 Jan 2023	29 Jan 2023	CPAI-2020-3666	CVE-2020-15920	Mida Solutions eFramework Command Injection (CVE-2020-15920)
High	29 Jan 2023	29 Jan 2023	CPAI-2022-1140	CVE-2022-42979	RydeSharing Ryde Information Disclosure (CVE-2022-42979)
Critical	29 Jan 2023	29 Jan 2023	CPAI-2020-3436	CVE-2020-29583	Zyxel USG Authentication Bypass (CVE-2020-29583)
Critical	26 Jan 2023	26 Jan 2023	CPAI-2019-2758	CVE-2019-7304	Canonical Snap Authentication Bypass (CVE-2019-7304)
High	25 Jan 2023	25 Jan 2023	CPAI-2017-1608	CVE-2017-6019	Schneider Electric Conext ComBox Denial of Service (CVE-2017-6019)
High	25 Jan 2023	25 Jan 2023	CPAI-2021-1557	CVE-2021-29156	ForgeRock OpenAM LDAP Injection (CVE-2021-29156)
Critical	25 Jan 2023	25 Jan 2023	CPAI-2018-2293	CVE-2018-5347	Seagate Media Server Command Injection (CVE-2018-5347)
Critical	25 Jan 2023	25 Jan 2023	CPAI-2022-1138	CVE-2022-23529	Auto0 JsonWebToken Remote Code Execution (CVE-2022-23529)
Critical	25 Jan 2023	25 Jan 2023	CPAI-2018-2292	CVE-2018-9059	Easy File Sharing Web Server Buffer Overflow (CVE-2018-9059)
Critical	25 Jan 2023	25 Jan 2023	CPAI-2018-2286	CVE-2018-6396	Joomla! Google Map Landkarten Component SQL Injection (CVE-2018-6396)
Critical	25 Jan 2023	25 Jan 2023	CPAI-2022-1124	CVE-2022-29775	ISpyConnect ISpy Authentication Bypass (CVE-2022-29775)
Critical	25 Jan 2023	25 Jan 2023	CPAI-2022-0912	CVE-2022-31874	ASUS RT-N53 Command Injection (CVE-2022-31874)
Critical	24 Jan 2023	24 Jan 2023	CPAI-2022-1139	CVE-2022-3792	GullsEye Terminal Operating System Command Injection (CVE-2022-3792)
Critical	24 Jan 2023	24 Jan 2023	CPAI-2018-2294	CVE-2018-19510	ENS Webgalamb SQL Injection (CVE-2018-19510)
High	24 Jan 2023	24 Jan 2023	CPAI-2017-1607	CVE-2017-9833	Boa Directory Traversal (CVE-2017-9833)
High	24 Jan 2023	24 Jan 2023	CPAI-2021-1556	CVE-2021-43857	Gerapy Command Injection (CVE-2021-43857)
High	24 Jan 2023	24 Jan 2023	CPAI-2018-2291	CVE-2018-1000811	Bludit Arbitrary File Upload (CVE-2018-1000811)
High	24 Jan 2023	24 Jan 2023	CPAI-2019-2756	CVE-2019-12169	ATutor Directory Traversal (CVE-2019-12169)
Critical	24 Jan 2023	24 Jan 2023	CPAI-2021-1555	CVE-2021-3120	WordPress YITH WooCommerce Gift Cards Premium Plugin Arbitrary File Upload (CVE-2021-3120)
Critical	23 Jan 2023	23 Jan 2023	CPAI-2019-2757	CVE-2019-16928	Exim Heap-based Buffer Overflow (CVE-2019-16928)
High	23 Jan 2023	23 Jan 2023	CPAI-2022-1131	CVE-2022-44149	Nexxt Amp300 Command Injection (CVE-2022-44149)
High	23 Jan 2023	23 Jan 2023	CPAI-2021-1545	CVE-2021-39312	WordPress True Ranker Plugin Directory Traversal (CVE-2021-39312)
High	23 Jan 2023	23 Jan 2023	CPAI-2018-2282	CVE-2018-12692	TP-Link TL-WA850RE Command Injection (CVE-2018-12692)
High	22 Jan 2023	22 Jan 2023	CPAI-2020-3660	CVE-2020-11943	Open-AudIT Arbitrary File Upload (CVE-2020-11943)
High	22 Jan 2023	22 Jan 2023	CPAI-2022-1134	CVE-2022-35401	Asus RT-AX82U Authentication Bypass (CVE-2022-35401)