Home / 2024 Advisories Archive

2024 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
Critical	27 Jun 2024	27 Jun 2024	CPAI-2021-1950		CVE-2021-38390	Delta DIAEnergie SQL Injection (CVE-2021-38390)
High	27 Jun 2024	27 Jun 2024	CPAI-2022-1693		CVE-2022-41133	Delta DIAEnergie SQL Injection (CVE-2022-41133)
High	26 Jun 2024	26 Jun 2024	CPAI-2023-1807		CVE-2023-6893	Hikvision Intercom Broadcasting System Arbitrary File Read (CVE-2023-6893)
High	26 Jun 2024	26 Jun 2024	CPAI-2024-0410		CVE-2024-25850	Netis Systems WF2780 Command Injection (CVE-2024-25850)
Critical	26 Jun 2024	26 Jun 2024	CPAI-2019-3193		CVE-2019-18937 CVE-2019-18939	eQ-3 HomeMatic Remote Code Execution (CVE-2019-18937; CVE-2019-18939)
Critical	25 Jun 2024	25 Jun 2024	CPAI-2024-0457		CVE-2024-36680	PrestaShop Promokit Facebook Module SQL Injection (CVE-2024-36680)
High	25 Jun 2024	25 Jun 2024	CPAI-2023-1784		CVE-2023-45463 CVE-2023-45464 CVE-2023-45468	Netis Systems N3M Buffer Overflow (CVE-2023-45463; CVE-2023-45464; CVE-2023-45468)
Critical	25 Jun 2024	25 Jun 2024	CPAI-2024-0398		CVE-2024-29972	Zyxel NAS Command Injection (CVE-2024-29972)
High	16 May 2024	25 Jun 2024	CPAI-2024-0278		CVE-2024-21793 CVE-2024-26026	F5 BIG-IP Next Central Manager SQL Injection (CVE-2024-21793; CVE-2024-26026)
High	23 Jun 2024	23 Jun 2024	CPAI-2024-0420		CVE-2024-25415	CE Phoenix Remote Code Execution (CVE-2024-25415)
Critical	23 Jun 2024	23 Jun 2024	CPAI-2024-0419			DEV-0569 Phishing Ad Campaign
High	23 Jun 2024	23 Jun 2024	CPAI-2024-0399		CVE-2024-32479	LibreNMS Stored Cross-Site Scripting (CVE-2024-32479)
High	23 Jun 2024	23 Jun 2024	CPAI-2024-0391		CVE-2024-5247	Netgear ProSAFE NMS300 Unrestricted File Upload (CVE-2024-5247)
High	23 Jun 2024	23 Jun 2024	CPAI-2023-1772		CVE-2023-51365	QNAP QTS Directory Traversal (CVE-2023-51365)
Medium	23 Jun 2024	23 Jun 2024	CPAI-2024-0385		CVE-2024-23117	Centreon Project Centreon Web SQL Injection (CVE-2024-23117)
Critical	23 Jun 2024	23 Jun 2024	CPAI-2024-0305			LDAP Injection
Medium	23 Jun 2024	23 Jun 2024	CPAI-2023-1261			TA505 Phishing Campaign
Critical	20 Jun 2024	20 Jun 2024	CPAI-2024-0418		CVE-2024-3922	WordPress Dokan Pro Plugin SQL Injection (CVE-2024-3922)
Medium	20 Jun 2024	20 Jun 2024	CPAI-2024-0415		CVE-2024-20404	Cisco Finesse Server-Side Request Forgery (CVE-2024-20404)
High	20 Jun 2024	20 Jun 2024	CPAI-2024-0403		CVE-2024-4947	Google Chrome Type Confusion (CVE-2024-4947)
Critical	20 Jun 2024	20 Jun 2024	CPAI-2023-1745		CVE-2023-34800	D-Link GO-RT-AC750 Command Injection (CVE-2023-34800)
High	28 May 2024	20 Jun 2024	CPAI-2024-0353		CVE-2024-24919	Check Point VPN Information Disclosure (CVE-2024-24919)
Critical	19 Jun 2024	19 Jun 2024	CPAI-2023-1754		CVE-2023-32571	Dynamic Linq Remote Code Execution (CVE-2023-32571)
Critical	19 Jun 2024	19 Jun 2024	CPAI-2024-0377		CVE-2024-1874	PHP Command Injection (CVE-2024-1874)
High	19 Jun 2024	19 Jun 2024	CPAI-2024-0359		CVE-2024-25938	Foxit Reader Use After Free (CVE-2024-25938)
High	19 Jun 2024	19 Jun 2024	CPAI-2024-0357		CVE-2024-25648	Foxit Reader Use After Free (CVE-2024-25648)
Critical	17 Apr 2024	19 Jun 2024	CPAI-2024-0198			LG LED Assistant Directory Traversal
Critical	15 Jan 2024	19 Jun 2024	CPAI-2023-1451		CVE-2023-37679 CVE-2023-43208	NextGen Mirth Connect Command Injection (CVE-2023-37679; CVE-2023-43208)
Critical	19 Jun 2024	19 Jun 2024	CPAI-2023-1770		CVE-2023-27853	Netgear RAX30 Remote Code Execution (CVE-2023-27853)
High	17 Jun 2024	17 Jun 2024	CPAI-2024-0404		CVE-2024-34112	Adobe ColdFusion Improper Access Control (CVE-2024-34112)
High	17 Jun 2024	17 Jun 2024	CPAI-2024-0400		CVE-2024-22120	ZABBIX SQL Injection (CVE-2024-22120)
High	17 Jun 2024	17 Jun 2024	CPAI-2023-1779		CVE-2023-4762	Google Chrome Type Confusion (CVE-2023-4762)
High	17 Jun 2024	17 Jun 2024	CPAI-2023-1777		CVE-2023-1938	WordPress WP Fastest Cache Plugin Server-Side Request Forgery (CVE-2023-1938)
Critical	17 Jun 2024	17 Jun 2024	CPAI-2023-1776		CVE-2023-31719	FUXA SQL Injection (CVE-2023-31719)
High	17 Jun 2024	17 Jun 2024	CPAI-2023-1774		CVE-2023-36255	Eramba Command Injection (CVE-2023-36255)
Critical	17 Jun 2024	17 Jun 2024	CPAI-2019-3200		CVE-2019-19838	Ruckus Wireless Devices Command Injection (CVE-2019-19838)
High	17 Jun 2024	17 Jun 2024	CPAI-2022-2061		CVE-2022-40152	FasterXML Woodstox XML Parser Buffer Overflow (CVE-2022-40152)
Critical	16 Jun 2024	16 Jun 2024	CPAI-2024-0395			PHP Wrappers Local File Inclusion
Critical	16 Jun 2024	16 Jun 2024	CPAI-2023-1773		CVE-2023-4922	WordPress WPB Show Core Plugin Information Disclosure (CVE-2023-4922)
High	16 Jun 2024	16 Jun 2024	CPAI-2023-1759		CVE-2023-44959	D-Link DSL-3782 Command Injection (CVE-2023-44959)
Critical	16 Jun 2024	16 Jun 2024	CPAI-2023-1753		CVE-2023-26613	D-Link DIR-823G Command Injection (CVE-2023-26613)
Medium	16 Jun 2024	16 Jun 2024	CPAI-2024-0213		CVE-2024-2863	LG LED Assistant Directory Traversal (CVE-2024-2863)
Critical	8 Jun 2024	13 Jun 2024	CPAI-2024-0392		CVE-2024-4577	PHP CGI Argument Injection (CVE-2024-4577)
Medium	13 Jun 2024	13 Jun 2024	CPAI-2023-1766		CVE-2023-50231	Netgear ProSAFE NMS300 Stored Cross-Site Scripting (CVE-2023-50231)
Critical	11 Jun 2024	11 Jun 2024	CPAI-2024-0374	Microsoft CVE-2024-30080	CVE-2024-30080	Microsoft Message Queuing Remote Code Execution (CVE-2024-30080)
High	11 Jun 2024	11 Jun 2024	CPAI-2024-0373	Microsoft CVE-2024-30084	CVE-2024-30084	Microsoft Windows Kernel-Mode Driver Elevation of Privilege (CVE-2024-30084)
High	11 Jun 2024	11 Jun 2024	CPAI-2024-0372	Microsoft CVE-2024-30089	CVE-2024-30089	Microsoft Streaming Service Elevation of Privilege (CVE-2024-30089)
High	11 Jun 2024	11 Jun 2024	CPAI-2024-0370	Microsoft CVE-2024-30087	CVE-2024-30087	Microsoft Win32k Elevation of Privilege (CVE-2024-30087)
Critical	11 Jun 2024	11 Jun 2024	CPAI-2024-0368	Microsoft CVE-2024-30091	CVE-2024-30091	Microsoft Win32k Elevation of Privilege (CVE-2024-30091)
High	10 Jun 2024	10 Jun 2024	CPAI-2023-1769		CVE-2023-26315	Xiaomi AX9000 Command Injection (CVE-2023-26315)