Home / 2023 Advisories Archive

2023 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
High	5 Dec 2023	19 Dec 2023	CPAI-2023-0541			Bug Bounty Scanner
Critical	18 Dec 2023	18 Dec 2023	CPAI-2023-1371		CVE-2023-30803	Sangfor Next-Gen Application Firewall Authentication Bypass (CVE-2023-30803)
High	17 Dec 2023	17 Dec 2023	CPAI-2022-1960		CVE-2022-21999	Microsoft Windows Privilege Escalation (CVE-2022-21999)
Medium	17 Dec 2023	17 Dec 2023	CPAI-2023-1372		CVE-2023-30804	Sangfor Next-Gen Application Firewall Information Disclosure (CVE-2023-30804)
Critical	8 Nov 2023	17 Dec 2023	CPAI-2023-1127		CVE-2023-22518	Atlassian Confluence Authentication Bypass (CVE-2023-22518)
Critical	27 Jul 2023	17 Dec 2023	CPAI-2023-0561		CVE-2023-28121	WordPress WooCommerce Payments Plugin Authentication Bypass (CVE-2023-28121)
Critical	14 Dec 2023	14 Dec 2023	CPAI-2023-1375		CVE-2023-41993	Apple Multiple Products Out of Bounds Write (CVE-2023-41993)
High	14 Dec 2023	14 Dec 2023	CPAI-2022-1958		CVE-2022-26485	Mozilla Multiple Products Use After Free (CVE-2022-26485)
High	14 Dec 2023	14 Dec 2023	CPAI-2021-2071		CVE-2021-21148	Google Chrome Buffer Overflow (CVE-2021-21148)
Critical	14 Dec 2023	14 Dec 2023	CPAI-2021-2070		CVE-2021-20028	SonicWall SMA SQL Injection (CVE-2021-20028)
High	14 Dec 2023	14 Dec 2023	CPAI-2022-1957		CVE-2022-4262	Google Chrome Type Confusion (CVE-2022-4262)
Critical	13 Dec 2023	13 Dec 2023	CPAI-2023-1368		CVE-2023-30805 CVE-2023-30806	Sangfor Next-Gen Application Firewall Command Injection (CVE-2023-30805; CVE-2023-30806)
High	12 Dec 2023	12 Dec 2023	CPAI-2023-1272	Microsoft CVE-2023-36005	CVE-2023-36005	Microsoft Windows Telephony Server Elevation of Privilege (CVE-2023-36005)
Medium	10 Dec 2023	12 Dec 2023	CPAI-2023-0230			Rapid7 Nexpose Security Scanner
High	11 Dec 2023	11 Dec 2023	CPAI-2019-3126		CVE-2019-14927	Mitsubishi Electric ME-RTU Information Disclosure (CVE-2019-14927)
High	11 Dec 2023	11 Dec 2023	CPAI-2023-1268		CVE-2023-4068	Google Chrome Type Confusion (CVE-2023-4068)
Critical	11 Dec 2023	11 Dec 2023	CPAI-2023-0921		CVE-2023-42793	JetBrains TeamCity Authentication Bypass (CVE-2023-42793)
Critical	11 Apr 2023	11 Dec 2023	CPAI-2023-0216	Microsoft CVE-2023-21554	CVE-2023-21554	Microsoft Message Queuing Remote Code Execution (CVE-2023-21554)
High	10 Jan 2023	11 Dec 2023	CPAI-2023-0005	Microsoft CVE-2023-21768	CVE-2023-21768	Microsoft Windows Ancillary Function Driver for WinSock Elevation of Privilege (CVE-2023-21768)
High	10 Dec 2023	10 Dec 2023	CPAI-2023-1354		CVE-2023-30625	RudderStack SQL Injection (CVE-2023-30625)
Critical	10 Dec 2023	10 Dec 2023	CPAI-2023-1351		CVE-2023-30258	MagnusSolution MagnusBilling Command Injection (CVE-2023-30258)
Medium	10 Dec 2023	10 Dec 2023	CPAI-2019-3129		CVE-2019-14928	Mitsubishi Electric ME-RTU Cross-Site Scripting (CVE-2019-14928)
High	10 Dec 2023	10 Dec 2023	CPAI-2015-1575		CVE-2015-0666	Cisco Prime Data Center Network Manager Directory Traversal (CVE-2015-0666)
High	10 Dec 2023	10 Dec 2023	CPAI-2023-1279		CVE-2023-3215	Google Chrome Use After Free (CVE-2023-3215)
High	10 Dec 2023	10 Dec 2023	CPAI-2023-1270		CVE-2023-49103	ownCloud Graph API Information Disclosure (CVE-2023-49103)
High	10 Dec 2023	10 Dec 2023	CPAI-2023-1269		CVE-2023-2725	Google Chrome Use After Free (CVE-2023-2725)
High	10 Dec 2023	10 Dec 2023	CPAI-2022-1951		CVE-2022-38900	Node.JS Denial of Service (CVE-2022-38900)
Medium	10 Dec 2023	10 Dec 2023	CPAI-2023-1356		CVE-2023-44449	Netgear ProSAFE NMS300 Routers SQL Injection (CVE-2023-44449)
High	10 Dec 2023	10 Dec 2023	CPAI-2010-0686		CVE-2010-3973	Microsoft WMI Administrative Tools Remote Code Execution (CVE-2010-3973)
Critical	10 Dec 2023	10 Dec 2023	CPAI-2023-1175		CVE-2023-5360	WordPress Royal Elementor Addons Plugin Arbitrary File Upload (CVE-2023-5360)
High	23 Oct 2023	10 Dec 2023	CPAI-2023-0933		CVE-2023-1133	Delta Electronics InfraSuite Device Master Remote Code Execution (CVE-2023-1133)
High	10 Dec 2023	10 Dec 2023	CPAI-2023-0235			eSentire Security Scanner
High	10 Dec 2023	10 Dec 2023	CPAI-2023-0232			WithSecure Security Scanner
High	7 Dec 2023	7 Dec 2023	CPAI-2023-1271		CVE-2023-2723	Google Chrome Use After Free (CVE-2023-2723)
Critical	23 Nov 2023	7 Dec 2023	CPAI-2023-1172		CVE-2023-38204	Adobe ColdFusion Insecure Deserialization (CVE-2023-38204)
High	7 Dec 2023	7 Dec 2023	CPAI-2023-0256			Cookie Information Cookie Scanner
Medium	6 Dec 2023	6 Dec 2023	CPAI-2023-1347		CVE-2023-5631	Roundcube Webmail Cross-Site Scripting (CVE-2023-5631)
High	6 Dec 2023	6 Dec 2023	CPAI-2023-1120		CVE-2023-36899	Microsoft Windows .NET Framework Elevation of Privilege (CVE-2023-36899)
Critical	2 Jul 2023	6 Dec 2023	CPAI-2022-1675		CVE-2022-44456	Contec CONPROSYS HMI System Command Injection (CVE-2022-44456)
High	6 Dec 2023	6 Dec 2023	CPAI-2023-0254			Sikich Security Scanner
High	5 Dec 2023	5 Dec 2023	CPAI-2023-1259		CVE-2023-4362	Google Chrome Heap Buffer Overflow (CVE-2023-4362)
Critical	5 Dec 2023	5 Dec 2023	CPAI-2023-0683		CVE-2023-26067 CVE-2023-26068 CVE-2023-26069 CVE-2023-26070	Lexmark Multiple Products Command Injection (CVE-2023-26067; CVE-2023-26068; CVE-2023-26069; CVE-2023-26070)
High	5 Dec 2023	5 Dec 2023	CPAI-2023-0242			Veracode Security Scanner
High	5 Dec 2023	5 Dec 2023	CPAI-2023-0222			Halo Security Scanner
High	4 Dec 2023	4 Dec 2023	CPAI-2023-1247			GravityRat Phishing Campaign
High	4 Dec 2023	4 Dec 2023	CPAI-2020-4080		CVE-2020-26124	OpenMediaVault Remote Code Execution (CVE-2020-26124)
High	4 Dec 2023	4 Dec 2023	CPAI-2021-2061		CVE-2021-43858	MinIO Privilege Escalation (CVE-2021-43858)
Critical	12 Oct 2023	4 Dec 2023	CPAI-2023-0916		CVE-2023-38545	cURL libcurl Heap Buffer Overflow (CVE-2023-38545)
High	3 Dec 2023	3 Dec 2023	CPAI-2023-1252		CVE-2023-4357	Google Chrome Information Disclosure (CVE-2023-4357)
High	3 Dec 2023	3 Dec 2023	CPAI-2023-1250		CVE-2023-4430	Google Chrome Use After Free (CVE-2023-4430)