Home / 2025 Advisories Archive

2025 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
High	27 Jul 2025	27 Jul 2025	CPAI-2024-1747		CVE-2024-31152	LevelOne WBR-6012 Denial of Service (CVE-2024-31152)
Medium	27 Jul 2025	27 Jul 2025	CPAI-2022-2224		CVE-2022-32205	Haxx Curl Denial of Service (CVE-2022-32205)
High	27 Jul 2025	27 Jul 2025	CPAI-2025-0577		CVE-2025-28023 CVE-2025-28029 CVE-2025-28032 CVE-2025-28033	TOTOLINK Multiple Routers Buffer Overflow (CVE-2025-28023; CVE-2025-28029; CVE-2025-28032; CVE-2025-28033)
High	27 Jul 2025	27 Jul 2025	CPAI-2022-2225		CVE-2022-42867	Apple Multiple Products Use After Free (CVE-2022-42867)
Critical	25 May 2025	27 Jul 2025	CPAI-2025-0309		CVE-2025-32756	Fortinet Multiple Products Buffer Overflow (CVE-2025-32756)
High	27 Jul 2025	27 Jul 2025	CPAI-2025-0596		CVE-2025-6299	TOTOLINK N150RT Command Injection (CVE-2025-6299)
High	27 Jul 2025	27 Jul 2025	CPAI-2025-0562		CVE-2025-48976	Apache Commons FileUpload Denial of Service (CVE-2025-48976)
High	27 Jul 2025	27 Jul 2025	CPAI-2024-1735		CVE-2024-12088	Rsync Directory Traversal (CVE-2024-12088)
High	27 Jul 2025	27 Jul 2025	CPAI-2025-0589		CVE-2025-37924	Linux Kernel Use After Free (CVE-2025-37924)
High	27 Jul 2025	27 Jul 2025	CPAI-2025-0597		CVE-2025-6485	TOTOLINK A3200R Command Injection (CVE-2025-6485)
Critical	27 Apr 2025	27 Jul 2025	CPAI-2025-0224		CVE-2025-34028	Commvault Command Center Remote Code Execution (CVE-2025-34028)
High	24 Jul 2025	24 Jul 2025	CPAI-2023-2091		CVE-2023-20117	Cisco RV320 and RV325 Command Injection (CVE-2023-20117)
High	24 Jul 2025	24 Jul 2025	CPAI-2021-2340		CVE-2021-28474	Microsoft SharePoint Remote Code Execution (CVE-2021-28474)
High	24 Jul 2025	24 Jul 2025	CPAI-2025-0574		CVE-2025-25528	Wavlink WL-WN575A3 Buffer Overflow (CVE-2025-25528)
High	24 Jul 2025	24 Jul 2025	CPAI-2025-0568		CVE-2025-6151	TP-Link Multiple Products Buffer Overflow (CVE-2025-6151)
Critical	24 Jul 2025	24 Jul 2025	CPAI-2025-0567		CVE-2025-45798 CVE-2025-45800	TOTOLINK A950RG Command Injection (CVE-2025-45798; CVE-2025-45800)
High	24 Jul 2025	24 Jul 2025	CPAI-2025-0564		CVE-2025-4919	Mozilla Multiple Products Out of Bounds Read (CVE-2025-4919)
High	24 Jul 2025	24 Jul 2025	CPAI-2025-0559		CVE-2025-43562	Adobe ColdFusion Command Injection (CVE-2025-43562)
High	24 Jul 2025	24 Jul 2025	CPAI-2024-1748		CVE-2024-53333	TOTOLINK EX200 Command Injection (CVE-2024-53333)
High	24 Jul 2025	24 Jul 2025	CPAI-2024-1749		CVE-2024-31814	TOTOLINK EX200 Authentication Bypass (CVE-2024-31814)
High	20 Jul 2025	24 Jul 2025	CPAI-2025-0554		CVE-2025-6771	Ivanti Endpoint Manager Mobile Command Injection (CVE-2025-6771)
High	13 Jul 2025	24 Jul 2025	CPAI-2025-0522		CVE-2025-7206	D-Link DIR-825 Buffer Overflow (CVE-2025-7206)
High	13 Jul 2025	24 Jul 2025	CPAI-2025-0521		CVE-2025-49596	Model Context Protocol Inspector Remote Code Execution (CVE-2025-49596)
High	8 Jul 2025	24 Jul 2025	CPAI-2025-0505			Microsoft SharePoint Code Execution
Medium	24 Jul 2025	24 Jul 2025	CPAI-2019-3287		CVE-2019-10405	Jenkins Information Disclosure (CVE-2019-10405)
Critical	30 Jun 2025	24 Jul 2025	CPAI-2025-0489		CVE-2025-20281	Cisco Multiple Products Remote Code Execution (CVE-2025-20281)
Critical	8 Jun 2025	24 Jul 2025	CPAI-2025-0390		CVE-2025-49113	Roundcube Webmail Remote Code Execution (CVE-2025-49113)
High	19 May 2025	24 Jul 2025	CPAI-2014-2667		CVE-2014-8500	ISC BIND Denial of Service (CVE-2014-8500)
Critical	8 May 2025	24 Jul 2025	CPAI-2025-0269		CVE-2025-2775 CVE-2025-2776 CVE-2025-2777	SysAid On-Premise XML External Entity Injection (CVE-2025-2775; CVE-2025-2776; CVE-2025-2777)
Medium	24 Jul 2025	24 Jul 2025	CPAI-2022-1740		CVE-2022-47938	Linux Kernel Out of Bounds Read (CVE-2022-47938)
High	23 Jul 2025	23 Jul 2025	CPAI-2025-0576		CVE-2025-6110	Tenda FH1201 Stack Overflow (CVE-2025-6110)
High	23 Jul 2025	23 Jul 2025	CPAI-2025-0573		CVE-2025-3161 CVE-2025-4896	Tenda AC10 Buffer Overflow (CVE-2025-3161; CVE-2025-4896)
Critical	23 Jul 2025	23 Jul 2025	CPAI-2025-0566		CVE-2025-45797	TOTOLINK A950RG Buffer Overflow (CVE-2025-45797)
Critical	21 Jul 2025	23 Jul 2025	CPAI-2025-0570	Microsoft CVE-2025-49704	CVE-2025-49704 CVE-2025-53770	Microsoft SharePoint Server Insecure Deserialization (CVE-2025-49704; CVE-2025-53770)
Critical	21 Jul 2025	23 Jul 2025	CPAI-2025-0569		CVE-2025-49706 CVE-2025-53771	Microsoft SharePoint Server Authentication Bypass (CVE-2025-49706; CVE-2025-53771)
High	23 Jul 2025	23 Jul 2025	CPAI-2025-0563		CVE-2025-48988	Apache Tomcat Denial of Service (CVE-2025-48988)
High	23 Jul 2025	23 Jul 2025	CPAI-2023-2088		CVE-2023-46229	LangChain Server-Side Request Forgery (CVE-2023-46229)
Critical	28 Apr 2025	23 Jul 2025	CPAI-2025-0221		CVE-2025-32433	Erlang/OTP Remote Code Execution (CVE-2025-32433)
Critical	9 Mar 2025	23 Jul 2025	CPAI-2025-0025			XSLT Injection
High	22 Jul 2025	22 Jul 2025	CPAI-2025-0537		CVE-2025-32583	WordPress Termel PDF 2 Post Plugin Arbitrary File Upload (CVE-2025-32583)
High	21 Jul 2025	21 Jul 2025	CPAI-2025-0543		CVE-2025-47166	Microsoft SharePoint Server Authentication Bypass (CVE-2025-47166)
High	1 Jul 2025	21 Jul 2025	CPAI-2025-0491		CVE-2025-5777	Citrix NetScaler Out-of-Bounds Read (CVE-2025-5777)
Critical	14 Jul 2025	20 Jul 2025	CPAI-2025-0538		CVE-2025-25257	Fortinet FortiWeb SQL Injection (CVE-2025-25257)
Critical	17 Jul 2025	17 Jul 2025	CPAI-2020-4327		CVE-2020-17463	The Daylight Studio Fuel CMS SQL Injection (CVE-2020-17463)
Medium	17 Jul 2025	17 Jul 2025	CPAI-2025-0536		CVE-2025-31121	OpenEMR Cross-Site Scripting (CVE-2025-31121)
High	17 Jul 2025	17 Jul 2025	CPAI-2025-0534		CVE-2025-7091	Belkin F9k1122 firmware Buffer Overflow (CVE-2025-7091)
High	17 Jul 2025	17 Jul 2025	CPAI-2025-0533		CVE-2025-7090	Belkin F9k1122 firmware Buffer Overflow (CVE-2025-7090)
High	17 Jul 2025	17 Jul 2025	CPAI-2025-0532		CVE-2025-7092	Belkin F9k1122 firmware Buffer Overflow (CVE-2025-7092)
Medium	17 Jul 2025	17 Jul 2025	CPAI-2025-0531		CVE-2025-7081	Belkin F9k1122 firmware Command Injection (CVE-2025-7081)
High	17 Jul 2025	17 Jul 2025	CPAI-2025-0530		CVE-2025-7093	Belkin F9k1122 firmware Buffer Overflow (CVE-2025-7093)