Home / 2023 Advisories Archive

2023 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
High	12 Dec 2023	12 Dec 2023	CPAI-2023-1274	Microsoft CVE-2023-36391	CVE-2023-36391	Microsoft Local Security Authority Subsystem Service Elevation of Privilege (CVE-2023-36391)
High	12 Dec 2023	12 Dec 2023	CPAI-2023-1272	Microsoft CVE-2023-36005	CVE-2023-36005	Microsoft Windows Telephony Server Elevation of Privilege (CVE-2023-36005)
Medium	10 Dec 2023	12 Dec 2023	CPAI-2023-0230			Rapid7 Nexpose Security Scanner
High	11 Dec 2023	11 Dec 2023	CPAI-2019-3126		CVE-2019-14927	Mitsubishi Electric ME-RTU Information Disclosure (CVE-2019-14927)
High	11 Dec 2023	11 Dec 2023	CPAI-2023-1268		CVE-2023-4068	Google Chrome Type Confusion (CVE-2023-4068)
Critical	11 Dec 2023	11 Dec 2023	CPAI-2023-0921		CVE-2023-42793	JetBrains TeamCity Authentication Bypass (CVE-2023-42793)
High	11 Dec 2023	11 Dec 2023	CPAI-2022-1734		CVE-2022-44666	Microsoft Windows Remote Code Execution (CVE-2022-44666)
Critical	11 Apr 2023	11 Dec 2023	CPAI-2023-0216	Microsoft CVE-2023-21554	CVE-2023-21554	Microsoft Message Queuing Remote Code Execution (CVE-2023-21554)
High	10 Jan 2023	11 Dec 2023	CPAI-2023-0005	Microsoft CVE-2023-21768	CVE-2023-21768	Microsoft Windows Ancillary Function Driver for WinSock Elevation of Privilege (CVE-2023-21768)
High	10 Dec 2023	10 Dec 2023	CPAI-2023-1354		CVE-2023-30625	RudderStack SQL Injection (CVE-2023-30625)
Critical	10 Dec 2023	10 Dec 2023	CPAI-2023-1351		CVE-2023-30258	MagnusSolution MagnusBilling Command Injection (CVE-2023-30258)
Medium	10 Dec 2023	10 Dec 2023	CPAI-2019-3129		CVE-2019-14928	Mitsubishi Electric ME-RTU Cross-Site Scripting (CVE-2019-14928)
High	10 Dec 2023	10 Dec 2023	CPAI-2015-1575		CVE-2015-0666	Cisco Prime Data Center Network Manager Directory Traversal (CVE-2015-0666)
High	10 Dec 2023	10 Dec 2023	CPAI-2023-1279		CVE-2023-3215	Google Chrome Use After Free (CVE-2023-3215)
High	10 Dec 2023	10 Dec 2023	CPAI-2023-1270		CVE-2023-49103	ownCloud Graph API Information Disclosure (CVE-2023-49103)
High	10 Dec 2023	10 Dec 2023	CPAI-2023-1269		CVE-2023-2725	Google Chrome Use After Free (CVE-2023-2725)
High	10 Dec 2023	10 Dec 2023	CPAI-2022-1951		CVE-2022-38900	Node.JS Denial of Service (CVE-2022-38900)
Medium	10 Dec 2023	10 Dec 2023	CPAI-2023-1356		CVE-2023-44449	Netgear ProSAFE NMS300 Routers SQL Injection (CVE-2023-44449)
High	10 Dec 2023	10 Dec 2023	CPAI-2010-0686		CVE-2010-3973	Microsoft WMI Administrative Tools Remote Code Execution (CVE-2010-3973)
Critical	10 Dec 2023	10 Dec 2023	CPAI-2023-1175		CVE-2023-5360	WordPress Royal Elementor Addons Plugin Arbitrary File Upload (CVE-2023-5360)
High	23 Oct 2023	10 Dec 2023	CPAI-2023-0933		CVE-2023-1133	Delta Electronics InfraSuite Device Master Remote Code Execution (CVE-2023-1133)
High	10 Dec 2023	10 Dec 2023	CPAI-2023-0235			eSentire Security Scanner
High	10 Dec 2023	10 Dec 2023	CPAI-2023-0232			WithSecure Security Scanner
High	7 Dec 2023	7 Dec 2023	CPAI-2023-1271		CVE-2023-2723	Google Chrome Use After Free (CVE-2023-2723)
Critical	7 Dec 2023	7 Dec 2023	CPAI-2022-1952		CVE-2022-21445	Oracle JDeveloper Remote Code Execution (CVE-2022-21445)
Critical	23 Nov 2023	7 Dec 2023	CPAI-2023-1172		CVE-2023-38204	Adobe ColdFusion Insecure Deserialization (CVE-2023-38204)
High	7 Dec 2023	7 Dec 2023	CPAI-2023-0256			Cookie Information Cookie Scanner
High	25 Jul 2023	7 Dec 2023	CPAI-2023-0229			HTTP Vulnerability Scanner
High	2 May 2023	7 Dec 2023	CPAI-2023-0226		CVE-2023-29084	Zoho ManageEngine ADManager Plus Remote Code Execution (CVE-2023-29084)
Medium	6 Dec 2023	6 Dec 2023	CPAI-2023-1347		CVE-2023-5631	Roundcube Webmail Cross-Site Scripting (CVE-2023-5631)
High	6 Dec 2023	6 Dec 2023	CPAI-2023-1120		CVE-2023-36899	Microsoft Windows .NET Framework Elevation of Privilege (CVE-2023-36899)
Critical	2 Jul 2023	6 Dec 2023	CPAI-2022-1675		CVE-2022-44456	Contec CONPROSYS HMI System Command Injection (CVE-2022-44456)
High	6 Dec 2023	6 Dec 2023	CPAI-2023-0254			Sikich Security Scanner
High	5 Dec 2023	5 Dec 2023	CPAI-2023-1259		CVE-2023-4362	Google Chrome Heap Buffer Overflow (CVE-2023-4362)
Critical	5 Dec 2023	5 Dec 2023	CPAI-2023-0683		CVE-2023-26067 CVE-2023-26068 CVE-2023-26069 CVE-2023-26070	Lexmark Multiple Products Command Injection (CVE-2023-26067; CVE-2023-26068; CVE-2023-26069; CVE-2023-26070)
High	5 Dec 2023	5 Dec 2023	CPAI-2023-0242			Veracode Security Scanner
High	5 Dec 2023	5 Dec 2023	CPAI-2023-0222			Halo Security Scanner
Critical	4 Dec 2023	4 Dec 2023	CPAI-2018-2636		CVE-2018-14933 CVE-2018-15716	NUUO NVRMini Command Injection (CVE-2018-14933; CVE-2018-15716)
High	4 Dec 2023	4 Dec 2023	CPAI-2017-1726		CVE-2017-13156	Google Android Privilege Escalation (CVE-2017-13156)
High	4 Dec 2023	4 Dec 2023	CPAI-2023-1247			GravityRat Phishing Campaign
High	4 Dec 2023	4 Dec 2023	CPAI-2020-4080		CVE-2020-26124	OpenMediaVault Remote Code Execution (CVE-2020-26124)
High	4 Dec 2023	4 Dec 2023	CPAI-2021-2061		CVE-2021-43858	MinIO Privilege Escalation (CVE-2021-43858)
Medium	4 Dec 2023	4 Dec 2023	CPAI-2023-1179			Mythic HTTP C2 Communication
Critical	12 Oct 2023	4 Dec 2023	CPAI-2023-0916		CVE-2023-38545	cURL libcurl Heap Buffer Overflow (CVE-2023-38545)
High	3 Dec 2023	3 Dec 2023	CPAI-2023-1252		CVE-2023-4357	Google Chrome Information Disclosure (CVE-2023-4357)
High	3 Dec 2023	3 Dec 2023	CPAI-2023-1250		CVE-2023-4430	Google Chrome Use After Free (CVE-2023-4430)
Critical	3 Dec 2023	3 Dec 2023	CPAI-2020-4082		CVE-2020-9850	Apple Multiple Products Type Confusion (CVE-2020-9850)
High	3 Dec 2023	3 Dec 2023	CPAI-2023-1246		CVE-2023-44450	Netgear ProSAFE NMS300 getNodesByTopologyMapSearch SQL Injection (CVE-2023-44450)
High	3 Dec 2023	3 Dec 2023	CPAI-2023-1244			Storm-0978 Phishing Email Campaign
High	3 Dec 2023	3 Dec 2023	CPAI-2020-4079		CVE-2020-12029	Rockwell Automation FactoryTalk View Remote Code Execution (CVE-2020-12029)