Home / 2024 Advisories Archive

2024 Advisories Archive

Sort By: 2025  2024  2023  2022  2021  2020  2019  2018  2017  2016  2015  2014  2013  2012  2011  2010  2009  2008  2007  2006  2005  2004  1999  1998  

Security Gateway R75 and above

Security Advisories Subscription



Severity Date Published Date Updated Check Point Reference Source Industry Reference Description
Critical 16 May 2024 16 Jan 2025 CPAI-2024-0257 CVE-2024-31848
CVE-2024-31849
CVE-2024-31850
CVE-2024-31851
 CData Multiple Products Path Traversal (CVE-2024-31848; CVE-2024-31849; CVE-2024-31850; CVE-2024-31851)
Critical 24 Nov 2024 13 Jan 2025 CPAI-2024-1048 ALFA Webshell Over HTTP
Critical 23 Dec 2024 6 Jan 2025 CPAI-2024-1154 CVE-2024-38473
CVE-2024-38474
CVE-2024-38475
 Apache HTTP Server Remote Code Execution (CVE-2024-38473; CVE-2024-38474; CVE-2024-38475)
Critical 21 Oct 2024 1 Jan 2025 CPAI-2024-0981 CVE-2024-9680
 Mozilla Multiple Products Use After Free (CVE-2024-9680)
Critical 10 Apr 2024 1 Jan 2025 CPAI-2024-0179 CVE-2024-10914
CVE-2024-10915
CVE-2024-3272
CVE-2024-3273
 D-Link DNS Series Command Injection (CVE-2024-10914; CVE-2024-10915; CVE-2024-3272; CVE-2024-3273)
High 18 Jan 2024 1 Jan 2025 CPAI-2023-1476 CVE-2023-46805
 Ivanti Authentication Bypass (CVE-2023-46805)
High 10 Sep 2024 31 Dec 2024 CPAI-2024-1215 Microsoft CVE-2024-38245 CVE-2024-38245
 Microsoft Kernel Streaming Service Driver Elevation of Privilege (CVE-2024-38245)
High 30 Dec 2024 30 Dec 2024 CPAI-2024-1208 CVE-2024-12856
 Four-Faith F3x Series Command Injection (CVE-2024-12856)
Critical 30 Dec 2024 30 Dec 2024 CPAI-2024-1187 CVE-2024-41314
CVE-2024-41315
CVE-2024-41316
CVE-2024-41317
CVE-2024-41318
CVE-2024-41319
CVE-2024-41320
 TOTOLINK A6000R Command Injection (CVE-2024-41314; CVE-2024-41315; CVE-2024-41316; CVE-2024-41317; CVE-2024-41318; CVE-2024-41319; CVE-2024-41320)
Critical 30 Dec 2024 30 Dec 2024 CPAI-2024-1072 Directory Traversal Over SMTP
Critical 22 Jan 2024 30 Dec 2024 CPAI-2023-1486 CVE-2023-22527
 Atlassian Confluence Template Injection (CVE-2023-22527)
Critical 18 Dec 2024 29 Dec 2024 CPAI-2024-1166 CVE-2024-55956
 Cleo Arbitrary File Upload (CVE-2024-55956)
High 4 Dec 2024 29 Dec 2024 CPAI-2024-1106 Zoho ManageEngine OpManager SQL Injection
High 29 Dec 2024 29 Dec 2024 CPAI-2024-1179 CVE-2024-47841
 MediaWiki CSS Extension Directory Traversal (CVE-2024-47841)
High 8 Oct 2024 26 Dec 2024 CPAI-2024-0917 Microsoft CVE-2024-43560 CVE-2024-43560
 Microsoft Windows Storage Port Driver Elevation of Privilege (CVE-2024-43560)
High 26 Dec 2024 26 Dec 2024 CPAI-2023-1959 CVE-2023-28205
 Apple Multiple Products Use After Free (CVE-2023-28205)
High 26 Dec 2024 26 Dec 2024 CPAI-2024-1189 CVE-2024-5585
 PHP Command Injection (CVE-2024-5585)
High 26 Dec 2024 26 Dec 2024 CPAI-2024-1178 CVE-2024-42327
 Zabbix SQL Injection (CVE-2024-42327)
Critical 10 Jul 2024 26 Dec 2024 CPAI-2024-0559 CVE-2024-36401
 GeoServer Remote Code Execution (CVE-2024-36401)
Critical 1 May 2024 26 Dec 2024 CPAI-2023-1610 CVE-2023-34993
CVE-2023-48782
 Fortinet FortiWLM Command Injection (CVE-2023-34993; CVE-2023-48782)
Medium 26 Dec 2024 26 Dec 2024 CPAI-2024-1177 CVE-2024-50352
 LibreNMS Cross-Site Scripting (CVE-2024-50352)
High 25 Dec 2024 25 Dec 2024 CPAI-2024-1183 DigiEver Command Injection
High 25 Dec 2024 25 Dec 2024 CPAI-2024-1172 CVE-2024-47011
 Ivanti Avalanche Directory Traversal (CVE-2024-47011)
High 24 Dec 2024 24 Dec 2024 CPAI-2024-1176 CVE-2024-38819
 VMware Spring Framework Path Traversal (CVE-2024-38819)
High 23 Dec 2024 23 Dec 2024 CPAI-2024-1171 Ovalsec Security Scanner
Critical 23 Dec 2024 23 Dec 2024 CPAI-2022-2160 CVE-2022-23227
 NUUO NVRmini Authentication Bypass (CVE-2022-23227)
Medium 23 Dec 2024 23 Dec 2024 CPAI-2023-1951 CVE-2023-1009
 Draytek Vigor2960 Firmware Directory Traversal (CVE-2023-1009)
High 23 Dec 2024 23 Dec 2024 CPAI-2024-1169 CVE-2024-45230
 Django Denial of Service (CVE-2024-45230)
High 23 Dec 2024 23 Dec 2024 CPAI-2023-1946 CVE-2023-6909
 LF Projects MLflow Directory Traversal (CVE-2023-6909)
High 19 Dec 2024 19 Dec 2024 CPAI-2024-1167 CVE-2024-53376
 CyberPanel Command Injection (CVE-2024-53376)
High 19 Dec 2024 19 Dec 2024 CPAI-2024-1158 CVE-2024-39573
 Apache HTTP Server Server-Side Request Forgery (CVE-2024-39573)
Medium 19 Dec 2024 19 Dec 2024 CPAI-2024-1162 CVE-2024-43365
 Cacti Cross-Site Scripting (CVE-2024-43365)
High 19 Dec 2024 19 Dec 2024 CPAI-2024-1160 CVE-2024-0200
 GitHub Enterprise Server Remote Code Execution (CVE-2024-0200)
High 18 Dec 2024 18 Dec 2024 CPAI-2015-1675 CVE-2015-5371
 SolarWinds Storage Manager Path Traversal (CVE-2015-5371)
High 17 Dec 2024 17 Dec 2024 CPAI-2024-1148 Fortra Alert Logic MDR Security Scanner
High 11 Jun 2024 17 Dec 2024 CPAI-2024-0371 Microsoft CVE-2024-35250 CVE-2024-35250
 Microsoft Windows Kernel-Mode Driver Elevation of Privilege (CVE-2024-35250)
High 14 Apr 2024 17 Dec 2024 CPAI-2024-0187 CVE-2024-20767
 Adobe ColdFusion Information Disclosure (CVE-2024-20767)
High 28 Nov 2024 16 Dec 2024 CPAI-2024-1087 CVE-2024-47010
 Ivanti Avalanche Directory Traversal (CVE-2024-47010)
High 13 Nov 2024 16 Dec 2024 CPAI-2024-1051 CVE-2024-36136
 Ivanti Avalanche Denial of Service (CVE-2024-36136)
High 10 Nov 2024 16 Dec 2024 CPAI-2024-1039 CVE-2024-34785
 Ivanti Endpoint Manager SQL Injection (CVE-2024-34785)
High 29 Oct 2024 16 Dec 2024 CPAI-2024-0999 CVE-2024-9379
 Ivanti Cloud Services Appliance SQL Injection (CVE-2024-9379)
High 27 Oct 2024 16 Dec 2024 CPAI-2024-0992 CVE-2024-32845
 Ivanti Endpoint Manager SQL Injection (CVE-2024-32845)
Critical 13 Oct 2024 16 Dec 2024 CPAI-2024-0923 CVE-2024-29847
 Ivanti Endpoint Manager Insecure Deserialization (CVE-2024-29847)
Critical 16 Dec 2024 16 Dec 2024 CPAI-2024-0901 CVE-2024-38476
 Apache HTTP Server Server-Side Request Forgery (CVE-2024-38476)
High 1 Oct 2024 16 Dec 2024 CPAI-2024-0861 CVE-2024-37399
 Ivanti Avalanche Denial of Service (CVE-2024-37399)
Critical 3 Sep 2024 16 Dec 2024 CPAI-2024-0750 CVE-2024-38652
 Ivanti Avalanche Directory Traversal (CVE-2024-38652)
Medium 3 Sep 2024 16 Dec 2024 CPAI-2024-0736 CVE-2024-29830
 Ivanti Endpoint Manager SQL Injection (CVE-2024-29830)
High 19 Aug 2024 16 Dec 2024 CPAI-2024-0685 CVE-2024-29826
CVE-2024-29827
 Ivanti Endpoint Manager SQL Injection (CVE-2024-29826; CVE-2024-29827)
High 14 Jul 2024 16 Dec 2024 CPAI-2024-0566 CVE-2024-29823
 Ivanti Endpoint Manager SQL Injection (CVE-2024-29823)
High 15 Jul 2024 16 Dec 2024 CPAI-2024-0551 CVE-2024-29825
 Ivanti Endpoint Manager SQL Injection (CVE-2024-29825)
×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK