Home / 2025 Advisories Archive

2025 Advisories Archive

Sort By: 2025  2024  2023  2022  2021  2020  2019  2018  2017  2016  2015  2014  2013  2012  2011  2010  2009  2008  2007  2006  2005  2004  1999  1998  

Security Gateway R75 and above

Security Advisories Subscription



Severity Date Published Date Updated Check Point Reference Source Industry Reference Description
High 30 Dec 2025 9 Feb 2026 CPAI-2025-12007 CVE-2025-14847
 MongoDB Information Disclosure (CVE-2025-14847)
High 16 Jun 2025 9 Feb 2026 CPAI-2025-12016 CVE-2025-5902
CVE-2025-6137
CVE-2025-6138
 TOTOLINK T10 Buffer Overflow (CVE-2025-5902; CVE-2025-6137; CVE-2025-6138)
Medium 3 Jun 2025 9 Feb 2026 CPAI-2025-0365 CVE-2025-32102
 CrushFTP Server-Side Request Forgery (CVE-2025-32102)
Critical 5 Jun 2025 9 Feb 2026 CPAI-2025-12010 CVE-2025-25609
CVE-2025-25610
CVE-2025-25635
CVE-2025-45859
CVE-2025-45861
CVE-2025-45862
CVE-2025-45863
CVE-2025-45864
CVE-2025-45865
CVE-2025-45866
CVE-2025-45867
CVE-2025-6487
 TOTOLINK A3002R Buffer Overflow (CVE-2025-25609; CVE-2025-25610; CVE-2025-25635; CVE-2025-45859; CVE-2025-45861; CVE-2025-45862; CVE-2025-45863; CVE-2025-45864; CVE-2025-45865; CVE-2025-45866; CVE-2025-45867; CVE-2025-6487)
Medium 29 Apr 2025 9 Feb 2026 CPAI-2025-0234 CVE-2025-28142
 Dimax AC1200 Command Injection (CVE-2025-28142)
Critical 6 Jan 2025 9 Feb 2026 CPAI-2024-1218 CVE-2024-12987
 DrayTek Vigor Command Injection (CVE-2024-12987)
High 27 Nov 2025 8 Feb 2026 CPAI-2025-5493 CVE-2025-41115
 Grafana Multiple Products Privilege Escalation (CVE-2025-41115)
Critical 6 Nov 2025 8 Feb 2026 CPAI-2025-11997 CVE-2025-11953
 React Native Community CLI Command Injection (CVE-2025-11953)
Critical 10 Dec 2025 5 Feb 2026 CPAI-2025-11877 CVE-2025-10775
CVE-2025-10958
CVE-2025-10959
CVE-2025-10960
CVE-2025-10961
CVE-2025-10962
CVE-2025-10964
CVE-2025-9149
 Wavlink WL-NU516U1 Command Injection (CVE-2025-10775; CVE-2025-10958; CVE-2025-10959; CVE-2025-10960; CVE-2025-10961; CVE-2025-10962; CVE-2025-10964; CVE-2025-9149)
High 16 Jun 2025 5 Feb 2026 CPAI-2025-11915 CVE-2025-5600
CVE-2025-5793
CVE-2025-5907
CVE-2025-6302
 TOTOLINK EX1200T Buffer Overflow (CVE-2025-5600; CVE-2025-5793; CVE-2025-5907; CVE-2025-6302)
High 14 Dec 2025 4 Feb 2026 CPAI-2025-8125 CVE-2025-14225
 D-Link DCS-930L Command Injection (CVE-2025-14225)
High 12 Nov 2025 4 Feb 2026 CPAI-2025-11842 CVE-2025-64328
 Sangoma FreePBX Endpoint Manager Command Injection (CVE-2025-64328)
Critical 24 Apr 2025 4 Feb 2026 CPAI-2021-2789 CVE-2021-22175
CVE-2021-22214
CVE-2021-39935
 GitLab Server-Side Request Forgery (CVE-2021-22175; CVE-2021-22214; CVE-2021-39935)
High 15 Dec 2025 3 Feb 2026 CPAI-2025-9071 CVE-2025-6389
 WordPress Sneeit Framework Plugin Remote Code Execution (CVE-2025-6389)
Critical 19 Nov 2025 3 Feb 2026 CPAI-2025-4661 CVE-2025-64095
 DNN Platform Unrestricted File Upload (CVE-2025-64095)
High 11 Aug 2025 3 Feb 2026 CPAI-2025-0671 CVE-2025-7407
 NETGEAR D6400 Command Injection (CVE-2025-7407)
Critical 17 Sep 2025 2 Feb 2026 CPAI-2025-11624 CVE-2023-43128
CVE-2024-22651
CVE-2025-7192
CVE-2025-7836
CVE-2025-9026
 D-Link Multiple Devices Command Injection (CVE-2023-43128; CVE-2024-22651; CVE-2025-7192; CVE-2025-7836; CVE-2025-9026)
Critical 10 Dec 2025 29 Jan 2026 CPAI-2025-7586 CVE-2025-13562
 D-Link DIR-852 Command Injection (CVE-2025-13562)
Medium 16 Jun 2025 29 Jan 2026 CPAI-2025-0421 CVE-2025-5447
 Linksys Multiple Products Command Injection (CVE-2025-5447)
Critical 9 Jun 2025 29 Jan 2026 CPAI-2025-0380 CVE-2025-32814
 Infoblox NETMRI SQL Injection (CVE-2025-32814)
High 15 Dec 2025 25 Jan 2026 CPAI-2025-8521 CVE-2025-61675
 FreePBX Endpoint Manager SQL Injection (CVE-2025-61675)
Critical 9 Dec 2025 25 Jan 2026 CPAI-2025-11282 CVE-2022-38562
CVE-2022-38563
CVE-2022-38564
CVE-2022-38565
CVE-2022-38566
CVE-2022-38567
CVE-2022-38568
CVE-2022-38569
CVE-2022-38570
CVE-2022-38571
CVE-2023-51090
CVE-2025-9298
CVE-2025-9299
 Tenda M3 Buffer Overflow (CVE-2022-38562; CVE-2022-38563; CVE-2022-38564; CVE-2022-38565; CVE-2022-38566; CVE-2022-38567; CVE-2022-38568; CVE-2022-38569; CVE-2022-38570; CVE-2022-38571; CVE-2023-51090; CVE-2025-9298; CVE-2025-9299)
High 27 Jul 2025 25 Jan 2026 CPAI-2025-0615 CVE-2025-20337
 Cisco Identity Services Engine Remote Code Execution (CVE-2025-20337)
High 25 May 2025 25 Jan 2026 CPAI-2025-11301 CVE-2025-34026
CVE-2025-34027
 Versa Concerto Authentication Bypass (CVE-2025-34026; CVE-2025-34027)
High 3 Apr 2025 25 Jan 2026 CPAI-2025-11300 CVE-2024-45811
CVE-2025-30208
CVE-2025-31125
 Vite Information Disclosure (CVE-2024-45811; CVE-2025-30208; CVE-2025-31125)
High 10 Dec 2025 22 Jan 2026 CPAI-2025-11185 CVE-2025-50755
CVE-2025-50756
CVE-2025-50757
 Wavlink WL-WN535K3 Command Injection (CVE-2025-50755; CVE-2025-50756; CVE-2025-50757)
High 5 Nov 2025 22 Jan 2026 CPAI-2010-0882 CVE-2010-1428
 Red Hat JBoss Enterprise Application Platform Information Disclosure (CVE-2010-1428)
High 9 Feb 2025 19 Jan 2026 CPAI-2024-5197 CVE-2024-36272
CVE-2024-36290
CVE-2024-36493
CVE-2024-37184
CVE-2024-39288
CVE-2024-39299
CVE-2024-39357
CVE-2024-39358
CVE-2024-39359
CVE-2024-39757
CVE-2024-39768
CVE-2024-39769
CVE-2024-39770
CVE-2024-39774
 Wavlink AC3000 Buffer Overflow (CVE-2024-36272; CVE-2024-36290; CVE-2024-36493; CVE-2024-37184; CVE-2024-39288; CVE-2024-39299; CVE-2024-39357; CVE-2024-39358; CVE-2024-39359; CVE-2024-39757; CVE-2024-39768; CVE-2024-39769; CVE-2024-39770; CVE-2024-39774)
High 23 Jan 2025 19 Jan 2026 CPAI-2024-5196 CVE-2024-11651
CVE-2024-11652
CVE-2024-11653
CVE-2024-11654
CVE-2024-11655
CVE-2024-11656
CVE-2024-11657
CVE-2024-11658
CVE-2024-11659
CVE-2024-45242
 EnGenius Multiple Products Command Injection (CVE-2024-11651; CVE-2024-11652; CVE-2024-11653; CVE-2024-11654; CVE-2024-11655; CVE-2024-11656; CVE-2024-11657; CVE-2024-11658; CVE-2024-11659; CVE-2024-45242)
High 27 Jul 2025 15 Jan 2026 CPAI-2025-10825 CVE-2025-28023
CVE-2025-28025
CVE-2025-28026
CVE-2025-28027
CVE-2025-28028
CVE-2025-28029
CVE-2025-28032
CVE-2025-28033
CVE-2025-60699
 TOTOLINK Multiple Routers Buffer Overflow (CVE-2025-28023; CVE-2025-28025; CVE-2025-28026; CVE-2025-28027; CVE-2025-28028; CVE-2025-28029; CVE-2025-28032; CVE-2025-28033; CVE-2025-60699)
High 22 Jun 2025 15 Jan 2026 CPAI-2025-2439 CVE-2025-4008
 Smartbedded Meteobridge Command Injection (CVE-2025-4008)
High 15 May 2025 15 Jan 2026 CPAI-2025-0271 CVE-2025-3988
CVE-2025-3989
CVE-2025-3990
CVE-2025-3991
CVE-2025-3992
CVE-2025-3993
CVE-2025-4462
 TOTOLINK N150RT Buffer Overflow (CVE-2025-3988; CVE-2025-3989; CVE-2025-3990; CVE-2025-3991; CVE-2025-3992; CVE-2025-3993; CVE-2025-4462)
High 12 Oct 2025 14 Jan 2026 CPAI-2019-3504 CVE-2019-9515
 HTTP/2 Denial of Service (CVE-2019-9515)
Critical 11 Nov 2025 12 Jan 2026 CPAI-2023-3179 CVE-2022-40861
CVE-2022-44171
CVE-2022-44172
CVE-2022-44174
CVE-2022-44175
CVE-2022-44176
CVE-2022-44177
CVE-2022-44178
CVE-2022-44180
CVE-2022-44183
CVE-2023-24164
CVE-2023-24165
CVE-2023-24166
CVE-2023-24167
 Tenda AC18 Buffer Overflow (CVE-2022-40861; CVE-2022-44171; CVE-2022-44172; CVE-2022-44174; CVE-2022-44175; CVE-2022-44176; CVE-2022-44177; CVE-2022-44178; CVE-2022-44180; CVE-2022-44183; CVE-2023-24164; CVE-2023-24165; CVE-2023-24166; CVE-2023-24167)
High 25 Dec 2025 11 Jan 2026 CPAI-2025-10654 CVE-2025-14878
CVE-2025-14879
CVE-2025-15006
CVE-2025-15160
CVE-2025-15161
 Tenda WH450 Buffer Overflow (CVE-2025-14878; CVE-2025-14879; CVE-2025-15006; CVE-2025-15160; CVE-2025-15161)
High 12 Nov 2025 11 Jan 2026 CPAI-2025-4285 CVE-2025-52665
 Ubiquiti UniFi Access Application Remote Code Execution (CVE-2025-52665)
High 23 Oct 2025 11 Jan 2026 CPAI-2024-2248 CVE-2024-53944
 Shenzhen Tuoshi Multiple Products Command Injection (CVE-2024-53944)
Critical 30 Jul 2025 11 Jan 2026 CPAI-2025-10625 CVE-2025-29227
CVE-2025-29228
CVE-2025-29229
CVE-2025-45489
CVE-2025-45490
CVE-2025-45491
 Linksys E5600 Command Injection (CVE-2025-29227; CVE-2025-29228; CVE-2025-29229; CVE-2025-45489; CVE-2025-45490; CVE-2025-45491)
High 18 May 2025 11 Jan 2026 CPAI-2025-1760 CVE-2025-4427
CVE-2025-4428
 Ivanti EPMM Remote Code Execution (CVE-2025-4427; CVE-2025-4428)
Critical 23 Feb 2025 11 Jan 2026 CPAI-2024-4975 CVE-2024-34200
CVE-2024-34201
CVE-2024-34202
CVE-2024-34203
CVE-2024-34207
CVE-2024-34209
CVE-2024-34212
CVE-2024-34213
CVE-2024-34215
CVE-2024-34217
CVE-2024-7465
 TOTOLINK CP450 Buffer Overflow (CVE-2024-34200; CVE-2024-34201; CVE-2024-34202; CVE-2024-34203; CVE-2024-34207; CVE-2024-34209; CVE-2024-34212; CVE-2024-34213; CVE-2024-34215; CVE-2024-34217; CVE-2024-7465)
Critical 21 Dec 2025 8 Jan 2026 CPAI-2025-10549 CVE-2025-37164
 HPE OneView Remote Code Execution (CVE-2025-37164)
Critical 11 Aug 2025 8 Jan 2026 CPAI-2025-10501 CVE-2023-38939
CVE-2024-30584
CVE-2024-30586
CVE-2024-30588
CVE-2024-30590
CVE-2024-32315
CVE-2025-7527
CVE-2025-7530
CVE-2025-7531
CVE-2025-7532
CVE-2025-7548
CVE-2025-7549
CVE-2025-7550
CVE-2025-7551
 Tenda FH1202 Buffer Overflow (CVE-2023-38939; CVE-2024-30584; CVE-2024-30586; CVE-2024-30588; CVE-2024-30590; CVE-2024-32315; CVE-2025-7527; CVE-2025-7530; CVE-2025-7531; CVE-2025-7532; CVE-2025-7548; CVE-2025-7549; CVE-2025-7550; CVE-2025-7551)
High 9 Jun 2025 7 Jan 2026 CPAI-2025-10478 CVE-2025-44176
CVE-2025-7792
CVE-2025-7793
CVE-2025-7794
CVE-2025-7795
CVE-2025-7796
CVE-2025-7805
CVE-2025-7806
 Tenda FH451 Buffer Overflow (CVE-2025-44176; CVE-2025-7792; CVE-2025-7793; CVE-2025-7794; CVE-2025-7795; CVE-2025-7796; CVE-2025-7805; CVE-2025-7806)
Medium 30 Dec 2025 6 Jan 2026 CPAI-2024-4698 CVE-2024-5936
 PrivateGPT Open Redirect (CVE-2024-5936)
High 10 Dec 2025 6 Jan 2026 CPAI-2024-4741 CVE-2023-38925
CVE-2024-50994
CVE-2024-50995
CVE-2024-50996
CVE-2024-50997
CVE-2024-51007
CVE-2024-51011
CVE-2024-51014
CVE-2024-52017
CVE-2024-52023
CVE-2024-52024
CVE-2024-52025
CVE-2024-52026
 Netgear Multiple Products Buffer Overflow (CVE-2023-38925; CVE-2024-50994; CVE-2024-50995; CVE-2024-50996; CVE-2024-50997; CVE-2024-51007; CVE-2024-51011; CVE-2024-51014; CVE-2024-52017; CVE-2024-52023; CVE-2024-52024; CVE-2024-52025; CVE-2024-52026)
Critical 8 Sep 2025 6 Jan 2026 CPAI-2025-5950 CVE-2025-11117
CVE-2025-11418
CVE-2025-11423
CVE-2025-12232
CVE-2025-12233
CVE-2025-12234
CVE-2025-12235
CVE-2025-12236
CVE-2025-8180
CVE-2025-9006
CVE-2025-9007
CVE-2025-9443
CVE-2025-9748
 Tenda CH22 Buffer Overflow (CVE-2025-11117; CVE-2025-11418; CVE-2025-11423; CVE-2025-12232; CVE-2025-12233; CVE-2025-12234; CVE-2025-12235; CVE-2025-12236; CVE-2025-8180; CVE-2025-9006; CVE-2025-9007; CVE-2025-9443; CVE-2025-9748)
High 13 Jul 2025 6 Jan 2026 CPAI-2025-10406 CVE-2025-48703
 CentOS Web Panel Command Injection (CVE-2025-48703)
High 27 Jul 2025 5 Jan 2026 CPAI-2025-10362 CVE-2025-28023
CVE-2025-28025
CVE-2025-28026
CVE-2025-28027
CVE-2025-28028
CVE-2025-28029
CVE-2025-28032
CVE-2025-28033
 TOTOLINK Multiple Routers Buffer Overflow (CVE-2025-28023; CVE-2025-28025; CVE-2025-28026; CVE-2025-28027; CVE-2025-28028; CVE-2025-28029; CVE-2025-28032; CVE-2025-28033)
High 30 Dec 2025 5 Jan 2026 CPAI-2025-10270 CVE-2025-68664
CVE-2025-68665
 LangChain Insecure Deserialization (CVE-2025-68664; CVE-2025-68665)
High 13 Nov 2025 5 Jan 2026 CPAI-2025-4394 CVE-2025-11749
 WordPress AI Engine Plugin Information Disclosure (CVE-2025-11749)
×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK