Home / 2024 Advisories Archive

2024 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Industry Reference	Description
Critical	7 Jul 2024	7 Jul 2024	CPAI-2023-1819	CVE-2023-47207	Delta InfraSuite Device Master Insecure Deserialization (CVE-2023-47207)
High	31 Mar 2024	7 Jul 2024	CPAI-2023-1606	CVE-2023-6114	WordPress Duplicator Plugin Information Disclosure (CVE-2023-6114)
High	4 Jul 2024	4 Jul 2024	CPAI-2024-0544		Weaver E-cology OA System Remote Code Execution
High	4 Jul 2024	4 Jul 2024	CPAI-2022-2102	CVE-2022-45504	Tenda W6-S Denial Of Service (CVE-2022-45504)
Medium	2 Jul 2024	2 Jul 2024	CPAI-2017-1868	CVE-2017-5754	Intel Multiple Products Information Disclosure (CVE-2017-5754)
High	1 Jul 2024	1 Jul 2024	CPAI-2024-0530	CVE-2024-28999	SolarWinds Platform Authentication Bypass (CVE-2024-28999)
High	1 Jul 2024	1 Jul 2024	CPAI-2022-2098	CVE-2022-2419	Eveo URVE Web Manager Unrestricted File Upload (CVE-2022-2419)
Medium	1 Jul 2024	1 Jul 2024	CPAI-2024-0355	CVE-2024-31077	WordPress Project Forminator Plugin SQL Injection (CVE-2024-31077)
Medium	31 May 2024	1 Jul 2024	CPAI-2024-0311	CVE-2024-31997	XWiki.org XWiki Code Injection (CVE-2024-31997)
Medium	9 May 2024	1 Jul 2024	CPAI-2024-0218	CVE-2024-31465	XWiki Remote Code Execution (CVE-2024-31465)
High	30 Jun 2024	30 Jun 2024	CPAI-2023-1821	CVE-2023-38874	Economizzer Remote Code Execution (CVE-2023-38874)
Critical	30 Jun 2024	30 Jun 2024	CPAI-2023-1818	CVE-2023-44974	Emlog Remote Code Execution (CVE-2023-44974)
Critical	30 Jun 2024	30 Jun 2024	CPAI-2023-1817	CVE-2023-6018	LF Projects MLflow Authentication Bypass (CVE-2023-6018)
High	30 Jun 2024	30 Jun 2024	CPAI-2024-0502	CVE-2024-2829	GitLab Community and Enterprise Edition Denial of Service (CVE-2024-2829)
Critical	30 Jun 2024	30 Jun 2024	CPAI-2023-1810	CVE-2023-46042	GetSimple CMS Remote Code Execution (CVE-2023-46042)
High	30 Jun 2024	30 Jun 2024	CPAI-2023-1808	CVE-2023-46865	Crater App Arbitrary File Upload (CVE-2023-46865)
High	30 Jun 2024	30 Jun 2024	CPAI-2022-2087	CVE-2022-45672	Tenda I22 Buffer Overflow (CVE-2022-45672)
Medium	30 Jun 2024	30 Jun 2024	CPAI-2023-1763	CVE-2023-1183	LibreOffice Arbitrary File Write (CVE-2023-1183)
Critical	19 May 2024	30 Jun 2024	CPAI-2024-0289	CVE-2024-25641	Cacti Arbitrary File Upload (CVE-2024-25641)
High	27 Jun 2024	27 Jun 2024	CPAI-2024-0525	CVE-2024-5274	Google Chrome Type Confusion (CVE-2024-5274)
Critical	27 Jun 2024	27 Jun 2024	CPAI-2023-1815	CVE-2023-49442	JEECG Remote Code Execution (CVE-2023-49442)
Critical	27 Jun 2024	27 Jun 2024	CPAI-2024-0448	CVE-2024-29849	Veeam Backup and Replication Authentication Bypass (CVE-2024-29849)
High	27 Jun 2024	27 Jun 2024	CPAI-2023-1791	CVE-2023-47415	Cypress Solutions CTM-200 Command Injection (CVE-2023-47415)
High	27 Jun 2024	27 Jun 2024	CPAI-2022-2093	CVE-2022-28917	Tenda AX12 Buffer Overflow (CVE-2022-28917)
High	27 Jun 2024	27 Jun 2024	CPAI-2023-1786	CVE-2023-50968	Apache OFBiz Server-Side Request Forgery (CVE-2023-50968)
High	27 Jun 2024	27 Jun 2024	CPAI-2024-0421	CVE-2024-33343	D-Link DIR-822 Command Injection (CVE-2024-33343)
High	28 May 2024	27 Jun 2024	CPAI-2024-0335	CVE-2024-4439	WordPress Core Cross-Site Scripting (CVE-2024-4439)
Critical	27 Jun 2024	27 Jun 2024	CPAI-2024-0508	CVE-2024-34359	Python Package llama-cpp-python Remote Code Execution (CVE-2024-34359)
Critical	27 Jun 2024	27 Jun 2024	CPAI-2024-0503	CVE-2024-22729	Netis Systems MW5360 Command Injection (CVE-2024-22729)
High	27 Jun 2024	27 Jun 2024	CPAI-2024-0447	CVE-2024-24399	Lepton CMS Arbitrary File Upload (CVE-2024-24399)
High	27 Jun 2024	27 Jun 2024	CPAI-2020-4183	CVE-2020-16243	WECON LeviStudioU Buffer Overflow (CVE-2020-16243)
Critical	27 Jun 2024	27 Jun 2024	CPAI-2021-1950	CVE-2021-38390	Delta DIAEnergie SQL Injection (CVE-2021-38390)
High	27 Jun 2024	27 Jun 2024	CPAI-2022-1693	CVE-2022-41133	Delta DIAEnergie SQL Injection (CVE-2022-41133)
High	26 Jun 2024	26 Jun 2024	CPAI-2023-1807	CVE-2023-6893	Hikvision Intercom Broadcasting System Arbitrary File Read (CVE-2023-6893)
High	26 Jun 2024	26 Jun 2024	CPAI-2024-0410	CVE-2024-25850	Netis Systems WF2780 Command Injection (CVE-2024-25850)
Critical	26 Jun 2024	26 Jun 2024	CPAI-2019-3193	CVE-2019-18937 CVE-2019-18939	eQ-3 HomeMatic Remote Code Execution (CVE-2019-18937; CVE-2019-18939)
Critical	25 Jun 2024	25 Jun 2024	CPAI-2024-0457	CVE-2024-36680	PrestaShop Promokit Facebook Module SQL Injection (CVE-2024-36680)
High	25 Jun 2024	25 Jun 2024	CPAI-2023-1784	CVE-2023-45463 CVE-2023-45464 CVE-2023-45468	Netis Systems N3M Buffer Overflow (CVE-2023-45463; CVE-2023-45464; CVE-2023-45468)
High	23 Jun 2024	23 Jun 2024	CPAI-2024-0420	CVE-2024-25415	CE Phoenix Remote Code Execution (CVE-2024-25415)
Critical	23 Jun 2024	23 Jun 2024	CPAI-2024-0419		DEV-0569 Phishing Ad Campaign
High	23 Jun 2024	23 Jun 2024	CPAI-2024-0399	CVE-2024-32479	LibreNMS Stored Cross-Site Scripting (CVE-2024-32479)
High	23 Jun 2024	23 Jun 2024	CPAI-2024-0391	CVE-2024-5247	Netgear ProSAFE NMS300 Unrestricted File Upload (CVE-2024-5247)
High	23 Jun 2024	23 Jun 2024	CPAI-2023-1772	CVE-2023-51365	QNAP QTS Directory Traversal (CVE-2023-51365)
Medium	23 Jun 2024	23 Jun 2024	CPAI-2024-0385	CVE-2024-23117	Centreon Project Centreon Web SQL Injection (CVE-2024-23117)
Critical	23 Jun 2024	23 Jun 2024	CPAI-2024-0305		LDAP Injection
Medium	23 Jun 2024	23 Jun 2024	CPAI-2023-1261		TA505 Phishing Campaign
Critical	20 Jun 2024	20 Jun 2024	CPAI-2024-0418	CVE-2024-3922	WordPress Dokan Pro Plugin SQL Injection (CVE-2024-3922)
Medium	20 Jun 2024	20 Jun 2024	CPAI-2024-0415	CVE-2024-20404	Cisco Finesse Server-Side Request Forgery (CVE-2024-20404)
High	20 Jun 2024	20 Jun 2024	CPAI-2024-0403	CVE-2024-4947	Google Chrome Type Confusion (CVE-2024-4947)
Critical	20 Jun 2024	20 Jun 2024	CPAI-2023-1745	CVE-2023-34800	D-Link GO-RT-AC750 Command Injection (CVE-2023-34800)