Home / 2023 Advisories Archive

2023 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
High	10 Jan 2023	11 Dec 2023	CPAI-2023-0005	Microsoft CVE-2023-21768	CVE-2023-21768	Microsoft Windows Ancillary Function Driver for WinSock Elevation of Privilege (CVE-2023-21768)
High	10 Dec 2023	10 Dec 2023	CPAI-2023-1354		CVE-2023-30625	RudderStack SQL Injection (CVE-2023-30625)
Critical	10 Dec 2023	10 Dec 2023	CPAI-2023-1351		CVE-2023-30258	MagnusSolution MagnusBilling Command Injection (CVE-2023-30258)
Medium	10 Dec 2023	10 Dec 2023	CPAI-2019-3129		CVE-2019-14928	Mitsubishi Electric ME-RTU Cross-Site Scripting (CVE-2019-14928)
High	10 Dec 2023	10 Dec 2023	CPAI-2015-1575		CVE-2015-0666	Cisco Prime Data Center Network Manager Directory Traversal (CVE-2015-0666)
High	10 Dec 2023	10 Dec 2023	CPAI-2023-1279		CVE-2023-3215	Google Chrome Use After Free (CVE-2023-3215)
High	10 Dec 2023	10 Dec 2023	CPAI-2023-1270		CVE-2023-49103	ownCloud Graph API Information Disclosure (CVE-2023-49103)
High	10 Dec 2023	10 Dec 2023	CPAI-2023-1269		CVE-2023-2725	Google Chrome Use After Free (CVE-2023-2725)
High	10 Dec 2023	10 Dec 2023	CPAI-2022-1951		CVE-2022-38900	Node.JS Denial of Service (CVE-2022-38900)
Medium	10 Dec 2023	10 Dec 2023	CPAI-2023-1356		CVE-2023-44449	Netgear ProSAFE NMS300 Routers SQL Injection (CVE-2023-44449)
High	10 Dec 2023	10 Dec 2023	CPAI-2010-0686		CVE-2010-3973	Microsoft WMI Administrative Tools Remote Code Execution (CVE-2010-3973)
Critical	10 Dec 2023	10 Dec 2023	CPAI-2023-1175		CVE-2023-5360	WordPress Royal Elementor Addons Plugin Arbitrary File Upload (CVE-2023-5360)
High	23 Oct 2023	10 Dec 2023	CPAI-2023-0933		CVE-2023-1133	Delta Electronics InfraSuite Device Master Remote Code Execution (CVE-2023-1133)
High	10 Dec 2023	10 Dec 2023	CPAI-2023-0235			eSentire Security Scanner
High	10 Dec 2023	10 Dec 2023	CPAI-2023-0232			WithSecure Security Scanner
High	7 Dec 2023	7 Dec 2023	CPAI-2023-1271		CVE-2023-2723	Google Chrome Use After Free (CVE-2023-2723)
Critical	23 Nov 2023	7 Dec 2023	CPAI-2023-1172		CVE-2023-38204	Adobe ColdFusion Insecure Deserialization (CVE-2023-38204)
High	7 Dec 2023	7 Dec 2023	CPAI-2023-0256			Cookie Information Cookie Scanner
Medium	6 Dec 2023	6 Dec 2023	CPAI-2023-1347		CVE-2023-5631	Roundcube Webmail Cross-Site Scripting (CVE-2023-5631)
High	6 Dec 2023	6 Dec 2023	CPAI-2023-1120		CVE-2023-36899	Microsoft Windows .NET Framework Elevation of Privilege (CVE-2023-36899)
Critical	2 Jul 2023	6 Dec 2023	CPAI-2022-1675		CVE-2022-44456	Contec CONPROSYS HMI System Command Injection (CVE-2022-44456)
High	6 Dec 2023	6 Dec 2023	CPAI-2023-0254			Sikich Security Scanner
High	5 Dec 2023	5 Dec 2023	CPAI-2023-1259		CVE-2023-4362	Google Chrome Heap Buffer Overflow (CVE-2023-4362)
Critical	5 Dec 2023	5 Dec 2023	CPAI-2023-0683		CVE-2023-26067 CVE-2023-26068 CVE-2023-26069 CVE-2023-26070	Lexmark Multiple Products Command Injection (CVE-2023-26067; CVE-2023-26068; CVE-2023-26069; CVE-2023-26070)
High	5 Dec 2023	5 Dec 2023	CPAI-2023-0242			Veracode Security Scanner
High	5 Dec 2023	5 Dec 2023	CPAI-2023-0222			Halo Security Scanner
High	4 Dec 2023	4 Dec 2023	CPAI-2023-1247			GravityRat Phishing Campaign
High	4 Dec 2023	4 Dec 2023	CPAI-2020-4080		CVE-2020-26124	OpenMediaVault Remote Code Execution (CVE-2020-26124)
High	4 Dec 2023	4 Dec 2023	CPAI-2021-2061		CVE-2021-43858	MinIO Privilege Escalation (CVE-2021-43858)
Critical	12 Oct 2023	4 Dec 2023	CPAI-2023-0916		CVE-2023-38545	cURL libcurl Heap Buffer Overflow (CVE-2023-38545)
High	3 Dec 2023	3 Dec 2023	CPAI-2023-1252		CVE-2023-4357	Google Chrome Information Disclosure (CVE-2023-4357)
High	3 Dec 2023	3 Dec 2023	CPAI-2023-1250		CVE-2023-4430	Google Chrome Use After Free (CVE-2023-4430)
Critical	3 Dec 2023	3 Dec 2023	CPAI-2020-4082		CVE-2020-9850	Apple Multiple Products Type Confusion (CVE-2020-9850)
High	3 Dec 2023	3 Dec 2023	CPAI-2023-1246		CVE-2023-44450	Netgear ProSAFE NMS300 getNodesByTopologyMapSearch SQL Injection (CVE-2023-44450)
High	3 Dec 2023	3 Dec 2023	CPAI-2023-1244			Storm-0978 Phishing Email Campaign
High	3 Dec 2023	3 Dec 2023	CPAI-2020-4079		CVE-2020-12029	Rockwell Automation FactoryTalk View Remote Code Execution (CVE-2020-12029)
High	3 Dec 2023	3 Dec 2023	CPAI-2020-4078		CVE-2020-12028	Rockwell Automation FactoryTalk View Authentication Bypass (CVE-2020-12028)
High	3 Dec 2023	3 Dec 2023	CPAI-2021-2059		CVE-2020-8260 CVE-2021-22937	Pulse Connect Secure Remote Code Execution (CVE-2020-8260; CVE-2021-22937)
Critical	31 Oct 2023	3 Dec 2023	CPAI-2023-0947		CVE-2023-29798 CVE-2023-29799 CVE-2023-29800 CVE-2023-29801 CVE-2023-29802 CVE-2023-29803 CVE-2023-30013 CVE-2023-33487	TOTOLINK X18 Command Injection (CVE-2023-29798; CVE-2023-29799; CVE-2023-29800; CVE-2023-29801; CVE-2023-29802; CVE-2023-29803; CVE-2023-30013; CVE-2023-33487)
Critical	30 Nov 2023	30 Nov 2023	CPAI-2023-1245		CVE-2023-45878	Gibbonedu Arbitrary File Write (CVE-2023-45878)
High	28 Nov 2023	28 Nov 2023	CPAI-2019-3122		CVE-2019-12799	Shopware Remote Code Execution (CVE-2019-12799)
High	28 Nov 2023	28 Nov 2023	CPAI-2023-1212			Autodesk Multiple Products LiveUpdate ActiveX Control Code Execution
High	28 Nov 2023	28 Nov 2023	CPAI-2023-1207			Citrix Presentation Server Client ActiveX Control Buffer Overflow
Medium	28 Nov 2023	28 Nov 2023	CPAI-2023-1196			EMC Captiva QuickScan Pro KeyHelp ActiveX Control Buffer Overflow
High	25 Oct 2023	28 Nov 2023	CPAI-2023-0965		CVE-2023-4966	Citrix NetScaler Information Disclosure (CVE-2023-4966)
High	24 Aug 2023	28 Nov 2023	CPAI-2023-0383		CVE-2023-21931	Oracle Weblogic Server Remote Code Execution (CVE-2023-21931)
High	20 Jul 2023	27 Nov 2023	CPAI-2018-2429		CVE-2018-15812 CVE-2018-18326	DNN Insecure Deserialization (CVE-2018-15812; CVE-2018-18326)
Critical	26 Nov 2023	26 Nov 2023	CPAI-2023-1240		CVE-2023-26035	ZoneMinder Command Injection (CVE-2023-26035)
High	26 Nov 2023	26 Nov 2023	CPAI-2023-1238		CVE-2023-4428	Google Chrome Out-Of-Bounds Read (CVE-2023-4428)
Critical	26 Nov 2023	26 Nov 2023	CPAI-2023-1237		CVE-2023-46731	XWiki Remote Code Execution (CVE-2023-46731)