Home / 2025 Advisories Archive

2025 Advisories Archive

Sort By: 2025  2024  2023  2022  2021  2020  2019  2018  2017  2016  2015  2014  2013  2012  2011  2010  2009  2008  2007  2006  2005  2004  1999  1998  

Security Gateway R75 and above

Security Advisories Subscription



Severity Date Published Date Updated Check Point Reference Source Industry Reference Description
High 30 Sep 2025 30 Sep 2025 CPAI-2025-2130 CVE-2025-59934
 Formbricks Authentication Bypass (CVE-2025-59934)
Critical 30 Sep 2025 30 Sep 2025 CPAI-2025-2123 CVE-2025-54466
 Apache OFBiz Scrum Plugin Remote Code Execution (CVE-2025-54466)
Critical 30 Sep 2025 30 Sep 2025 CPAI-2023-2335 CVE-2023-29374
 LangChain Command Injection (CVE-2023-29374)
High 30 Sep 2025 30 Sep 2025 CPAI-2024-2158 CVE-2024-38666
 Wavlink AC3000 Command Injection (CVE-2024-38666)
High 30 Sep 2025 30 Sep 2025 CPAI-2024-2176 CVE-2024-10728
 WordPress PostX Plugin Authentication Bypass (CVE-2024-10728)
High 22 Apr 2025 30 Sep 2025 CPAI-2021-2428 CVE-2021-21311
 Adminer Server-Side Request Forgery (CVE-2021-21311)
Critical 13 Mar 2025 30 Sep 2025 CPAI-2025-2129 CVE-2025-26319
 FlowiseAI Directory Traversal (CVE-2025-26319)
Critical 30 Sep 2025 30 Sep 2025 CPAI-2024-2185 CVE-2024-9061
 WordPress ThemeHunk WP Popup Builder Plugin Remote Code Execution (CVE-2024-9061)
High 29 Sep 2025 29 Sep 2025 CPAI-2025-2082 CVE-2025-47813
 Wing FTP Server Information Disclosure (CVE-2025-47813)
High 29 Sep 2025 29 Sep 2025 CPAI-2024-2133 CVE-2024-36421
 Flowise Authentication Bypass (CVE-2024-36421)
High 29 Sep 2025 29 Sep 2025 CPAI-2025-2100 CVE-2025-32011
 KUNBUS PiCtory Authentication Bypass (CVE-2025-32011)
High 29 Sep 2025 29 Sep 2025 CPAI-2023-2323 CVE-2023-38095
 Netgear ProSAFE Network Management System Arbitrary File Upload (CVE-2023-38095)
High 4 Aug 2025 29 Sep 2025 CPAI-2025-2065 CVE-2025-5394
 WordPress Alone Theme Arbitrary File Upload (CVE-2025-5394)
High 28 Sep 2025 28 Sep 2025 CPAI-2025-2005 CVE-2025-6218
 RARLAB WinRAR Directory Traversal (CVE-2025-6218)
High 28 Sep 2025 28 Sep 2025 CPAI-2025-2003 CVE-2025-47163
 Microsoft SharePoint Server Insecure Deserialization (CVE-2025-47163)
High 28 Sep 2025 28 Sep 2025 CPAI-2025-1993 CVE-2025-52376
 Nexxt Solutions NCM-X1800 Authentication Bypass (CVE-2025-52376)
Medium 28 Sep 2025 28 Sep 2025 CPAI-2025-1951 CVE-2025-47811
 Wing FTP Server Command Injection (CVE-2025-47811)
Critical 28 Sep 2025 28 Sep 2025 CPAI-2016-1515 CVE-2016-7547
 Trend Micro Threat Discovery Appliance Command Injection (CVE-2016-7547)
Critical 28 Sep 2025 28 Sep 2025 CPAI-2021-2404 CVE-2021-20078
 ZohoCorp ManageEngine OpManager Directory Traversal (CVE-2021-20078)
High 28 Sep 2025 28 Sep 2025 CPAI-2025-2018 Salesforce Information Disclosure
High 26 Jun 2025 28 Sep 2025 CPAI-2025-2001 CVE-2025-31200
 Apple Multiple Products Memory Corruption (CVE-2025-31200)
Critical 31 Mar 2025 28 Sep 2025 CPAI-2025-2021 CVE-2025-2825
CVE-2025-31161
 CrushFTP Authentication Bypass (CVE-2025-2825; CVE-2025-31161)
High 13 Feb 2025 28 Sep 2025 CPAI-2025-2014 CVE-2025-0108
 Palo Alto Networks PAN-OS Authentication Bypass (CVE-2025-0108)
Critical 25 Sep 2025 25 Sep 2025 CPAI-2025-1950 BRICKSTORM C2 Communication
Critical 25 Sep 2025 25 Sep 2025 CPAI-2025-1927 CVE-2025-57773
 DataEase Remote Code Execution (CVE-2025-57773)
High 25 Sep 2025 25 Sep 2025 CPAI-2025-1925 CVE-2025-26264
 GeoVision GV-ASWeb Remote Code Execution (CVE-2025-26264)
High 21 Sep 2025 21 Sep 2025 CPAI-2025-1825 CVE-2025-59359
CVE-2025-59360
CVE-2025-59361
 Chaos Mesh Command Injection (CVE-2025-59359; CVE-2025-59360; CVE-2025-59361)
High 21 Sep 2025 21 Sep 2025 CPAI-2025-1795 CVE-2025-5964
 M-Files Server Directory Traversal (CVE-2025-5964)
High 21 Sep 2025 21 Sep 2025 CPAI-2023-2309 CVE-2023-48292
 XWiki Admin Tools Application Remote Code Execution (CVE-2023-48292)
High 13 Jul 2025 21 Sep 2025 CPAI-2025-1809 CVE-2025-49596
 Model Context Protocol Inspector Cross-Site Request Forgery (CVE-2025-49596)
High 1 Jan 2025 21 Sep 2025 CPAI-2024-2118 CVE-2024-29671
CVE-2024-46546
 NEXTU FLATA AX1500 Buffer Overflow (CVE-2024-29671; CVE-2024-46546)
High 18 Sep 2025 18 Sep 2025 CPAI-2025-1721 CVE-2025-9961
 TP-Link Archer AX Routers Stack Overflow (CVE-2025-9961)
High 18 Sep 2025 18 Sep 2025 CPAI-2025-1716 CVE-2025-54782
 NestJS Remote Code Execution (CVE-2025-54782)
High 18 Sep 2025 18 Sep 2025 CPAI-2025-1750 CVE-2025-8085
 WordPress Ditty Plugin Server-Side Request Forgery (CVE-2025-8085)
High 18 Sep 2025 18 Sep 2025 CPAI-2025-1772 CVE-2025-53722
 Microsoft Windows Remote Desktop Services Denial of Service (CVE-2025-53722)
High 18 Sep 2025 18 Sep 2025 CPAI-2024-2108 CVE-2024-12342
 TP-Link VN020 F3v Denial of Service (CVE-2024-12342)
High 18 Sep 2025 18 Sep 2025 CPAI-2024-2106 CVE-2024-20290
 Cisco ClamAV Denial of Service (CVE-2024-20290)
Critical 18 Sep 2025 18 Sep 2025 CPAI-2025-1769 CVE-2025-57772
 DataEase Remote Code Execution (CVE-2025-57772)
High 18 Sep 2025 18 Sep 2025 CPAI-2023-2303 CVE-2023-7308
 NSFOCUS SecGate3600 Information Disclosure (CVE-2023-7308)
High 18 Sep 2025 18 Sep 2025 CPAI-2025-1739 CVE-2025-58434
 Flowise Authentication Bypass (CVE-2025-58434)
High 18 Sep 2025 18 Sep 2025 CPAI-2022-2324 CVE-2022-3552
 BoxBilling Unrestricted File Upload (CVE-2022-3552)
High 18 Sep 2025 18 Sep 2025 CPAI-2025-1765 CVE-2025-6898
 D-Link DI-7300G+ Command Injection (CVE-2025-6898)
High 18 May 2025 18 Sep 2025 CPAI-2025-1760 CVE-2025-4427
CVE-2025-4428
 Ivanti EPMM Remote Code Execution (CVE-2025-4427; CVE-2025-4428)
Critical 17 Sep 2025 17 Sep 2025 CPAI-2024-2087 CVE-2024-4990
 Yii 2 Framework Remote Code Execution (CVE-2024-4990)
High 17 Sep 2025 17 Sep 2025 CPAI-2025-1652 CVE-2025-50989
 OPNsense Command Injection (CVE-2025-50989)
High 17 Sep 2025 17 Sep 2025 CPAI-2025-1650 CVE-2025-58180
 OctoPrint Command Injection (CVE-2025-58180)
Critical 17 Sep 2025 17 Sep 2025 CPAI-2024-2091 CVE-2024-22651
 D-Link DIR-815 Command Injection (CVE-2024-22651)
Critical 2 Sep 2025 17 Sep 2025 CPAI-2025-1625 CVE-2025-57819
 Sangoma FreePBX SQL Injection (CVE-2025-57819)
Critical 25 Mar 2025 17 Sep 2025 CPAI-2022-2321 CVE-2019-10955
CVE-2021-23385
CVE-2021-23393
CVE-2021-32618
CVE-2022-45402
 Open Redirect Attempt (CVE-2019-10955; CVE-2021-23385; CVE-2021-23393; CVE-2021-32618; CVE-2022-45402)
High 16 Sep 2025 16 Sep 2025 CPAI-2025-1585 CVE-2025-6507
 H2O.ai H2O-3 Insecure Deserialization (CVE-2025-6507)
×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK