Home / 2025 Advisories Archive

2025 Advisories Archive

Sort By: 2025  2024  2023  2022  2021  2020  2019  2018  2017  2016  2015  2014  2013  2012  2011  2010  2009  2008  2007  2006  2005  2004  1999  1998  

Security Gateway R75 and above

Security Advisories Subscription



Severity Date Published Date Updated Check Point Reference Source Industry Reference Description
Critical 7 Jan 2025 16 Apr 2026 CPAI-2025-15151 CVE-2024-40725
CVE-2025-55315
 HTTP Requests Smuggling (CVE-2024-40725; CVE-2025-55315)
Critical 7 Jan 2025 15 Apr 2026 CPAI-2026-3117 CVE-2024-40725
CVE-2025-55315
CVE-2026-40175
 HTTP Requests Smuggling (CVE-2024-40725; CVE-2025-55315; CVE-2026-40175)
Critical 14 Dec 2025 14 Apr 2026 CPAI-2024-5901 CVE-2024-7440
CVE-2024-7442
CVE-2024-7443
 Vivotek Multiple Products Command Injection (CVE-2024-7440; CVE-2024-7442; CVE-2024-7443)
High 12 Jun 2025 12 Apr 2026 CPAI-2025-14711 CVE-2025-2294
 WordPress Kubio AI Page Builder Plugin Directory Traversal (CVE-2025-2294)
High 8 Jun 2025 12 Apr 2026 CPAI-2024-5887 CVE-2024-13171
 Ivanti Endpoint Manager Directory Traversal (CVE-2024-13171)
High 13 May 2025 12 Apr 2026 CPAI-2025-14713 Adobe APSB25-52 CVE-2025-43560
 Adobe ColdFusion Remote Code Execution (CVE-2025-43560)
High 7 May 2025 12 Apr 2026 CPAI-2025-14712 CVE-2025-1661
 WordPress HUSKY Products Filter Professional Plugin Local File Inclusion (CVE-2025-1661)
High 27 Jul 2025 5 Apr 2026 CPAI-2025-0612 CVE-2025-6558
 Google Chrome Authentication Bypass (CVE-2025-6558)
High 8 Jun 2025 31 Mar 2026 CPAI-2025-14132 CVE-2025-0317
 Ollama Denial of Service (CVE-2025-0317)
Critical 14 Apr 2025 30 Mar 2026 CPAI-2025-14086 CVE-2025-3248
 Langflow Remote Code Execution (CVE-2025-3248)
High 14 Dec 2025 29 Mar 2026 CPAI-2025-13954 CVE-2025-53417
 Delta Electronics DIAView Directory Traversal (CVE-2025-53417)
Medium 29 May 2025 29 Mar 2026 CPAI-2025-14029 CVE-2025-46618
 JetBrains TeamCity Cross-Site Scripting (CVE-2025-46618)
High 12 Nov 2025 26 Mar 2026 CPAI-2025-11842 CVE-2025-64328
 Sangoma FreePBX Endpoint Manager Command Injection (CVE-2025-64328)
Critical 4 Jun 2025 26 Mar 2026 CPAI-2025-0367 CVE-2025-48827
CVE-2025-48828
 vBulletin Remote Code Execution (CVE-2025-48827; CVE-2025-48828)
High 4 Jun 2025 26 Mar 2026 CPAI-2014-2850 CVE-2014-0239
 Samba Denial of Service (CVE-2014-0239)
Critical 24 Mar 2025 23 Mar 2026 CPAI-2010-0982 CVE-2009-0542
CVE-2010-2453
 FTP Insecure Sanitization in User Name (CVE-2009-0542; CVE-2010-2453)
High 10 Dec 2025 23 Mar 2026 CPAI-2025-13587 CVE-2025-61128
 Wavlink QUANTUM D3G Stack Overflow (CVE-2025-61128)
High 29 Sep 2025 23 Mar 2026 CPAI-2025-13389 CVE-2025-47813
 Wing FTP Server Information Disclosure (CVE-2025-47813)
Critical 26 Jun 2025 22 Mar 2026 CPAI-2025-0481 CVE-2025-34037
 Linksys Multiple Products Command Injection (CVE-2025-34037)
High 4 Aug 2025 17 Mar 2026 CPAI-2024-5560 CVE-2024-33603
 LevelOne WBR-6012 Information Disclosure (CVE-2024-33603)
High 9 Jul 2025 17 Mar 2026 CPAI-2026-1769 CVE-2025-5571
CVE-2026-2218
CVE-2026-2227
CVE-2026-2260
 D-Link DCS Command Injection (CVE-2025-5571; CVE-2026-2218; CVE-2026-2227; CVE-2026-2260)
High 4 Aug 2025 16 Mar 2026 CPAI-2024-5519 CVE-2024-33603
 LevelOne WBR-6012 Information Disclosure (CVE-2024-33603)
High 20 Nov 2025 15 Mar 2026 CPAI-2025-13171 CVE-2025-58034
 Fortinet FortiWeb Command Injection (CVE-2025-58034)
Critical 31 Mar 2025 15 Mar 2026 CPAI-2025-13138 CVE-2024-39202
CVE-2024-39962
CVE-2025-10123
CVE-2025-10634
CVE-2025-10814
CVE-2025-11095
CVE-2025-11096
CVE-2025-11097
CVE-2025-11098
CVE-2025-11099
CVE-2025-29040
CVE-2025-29041
CVE-2025-29635
 D-Link DIR-823X Command Injection (CVE-2024-39202; CVE-2024-39962; CVE-2025-10123; CVE-2025-10634; CVE-2025-10814; CVE-2025-11095; CVE-2025-11096; CVE-2025-11097; CVE-2025-11098; CVE-2025-11099; CVE-2025-29040; CVE-2025-29041; CVE-2025-29635)
High 28 Dec 2025 12 Mar 2026 CPAI-2025-13111 CVE-2025-68613
 n8n Remote Code Execution (CVE-2025-68613)
Critical 27 Jul 2025 12 Mar 2026 CPAI-2025-3080 CVE-2025-54309
 CrushFTP Authentication Bypass (CVE-2025-54309)
High 12 Jun 2025 11 Mar 2026 CPAI-2026-1533 CVE-2025-2563
CVE-2026-1492
 WordPress User Registration and Membership Plugin Privilege Escalation (CVE-2025-2563; CVE-2026-1492)
Critical 6 Nov 2025 8 Mar 2026 CPAI-2025-11997 CVE-2025-11953
 React Native Community CLI Command Injection (CVE-2025-11953)
High 10 Dec 2025 4 Mar 2026 CPAI-2025-12819 CVE-2025-61928
 Better Auth Authentication Bypass (CVE-2025-61928)
High 25 May 2025 3 Mar 2026 CPAI-2025-11301 CVE-2025-34026
CVE-2025-34027
 Versa Concerto Authentication Bypass (CVE-2025-34026; CVE-2025-34027)
Critical 25 Mar 2025 1 Mar 2026 CPAI-2025-0109 CVE-2025-29927
 Next.js Authentication Bypass (CVE-2025-29927)
Critical 14 Apr 2025 24 Feb 2026 CPAI-2025-12428 CVE-2025-3248
 Langflow Remote Code Execution (CVE-2025-3248)
High 13 Nov 2025 22 Feb 2026 CPAI-2025-4350 CVE-2025-34299
 MonstaFTP Arbitrary File Upload (CVE-2025-34299)
High 5 Nov 2025 22 Feb 2026 CPAI-2010-0882 CVE-2010-1428
 Red Hat JBoss Enterprise Application Platform Information Disclosure (CVE-2010-1428)
High 8 Jun 2025 22 Feb 2026 CPAI-2025-12357 CVE-2025-49113
 Roundcube Webmail Remote Code Execution (CVE-2025-49113)
High 23 Jan 2025 18 Feb 2026 CPAI-2024-5493 CVE-2024-11651
CVE-2024-11652
CVE-2024-11653
CVE-2024-11654
CVE-2024-11655
CVE-2024-11656
CVE-2024-11657
CVE-2024-11658
CVE-2024-11659
CVE-2024-36060
CVE-2024-36061
CVE-2024-45242
 EnGenius Multiple Products Command Injection (CVE-2024-11651; CVE-2024-11652; CVE-2024-11653; CVE-2024-11654; CVE-2024-11655; CVE-2024-11656; CVE-2024-11657; CVE-2024-11658; CVE-2024-11659; CVE-2024-36060; CVE-2024-36061; CVE-2024-45242)
Critical 21 Dec 2025 17 Feb 2026 CPAI-2025-12272 CVE-2025-66516
 Apache Tika XML External Entity Injection (CVE-2025-66516)
High 24 Jun 2025 17 Feb 2026 CPAI-2024-5472 CVE-2024-53703
 SonicWall SMA100 Buffer Overflow (CVE-2024-53703)
High 13 Nov 2025 15 Feb 2026 CPAI-2025-12246 CVE-2025-12101
 Citrix NetScaler Cross-Site Scripting (CVE-2025-12101)
High 10 Apr 2025 15 Feb 2026 CPAI-2025-12245 CVE-2025-2945
 PostgreSQL pgAdmin Remote Code Execution (CVE-2025-2945)
High 9 Feb 2025 15 Feb 2026 CPAI-2024-5454 CVE-2024-43468
 Microsoft Configuration Manager Remote Code Execution (CVE-2024-43468)
High 30 Dec 2025 15 Feb 2026 CPAI-2025-12232 CVE-2025-14847
 MongoDB Information Disclosure (CVE-2025-14847)
High 24 Nov 2025 12 Feb 2026 CPAI-2022-3134 CVE-2022-36799
 Atlassian Jira Remote Code Execution (CVE-2022-36799)
High 30 Dec 2025 9 Feb 2026 CPAI-2025-12007 CVE-2025-14847
 MongoDB Information Disclosure (CVE-2025-14847)
High 16 Jun 2025 9 Feb 2026 CPAI-2025-12016 CVE-2025-5902
CVE-2025-6137
CVE-2025-6138
 TOTOLINK T10 Buffer Overflow (CVE-2025-5902; CVE-2025-6137; CVE-2025-6138)
Medium 3 Jun 2025 9 Feb 2026 CPAI-2025-0365 CVE-2025-32102
 CrushFTP Server-Side Request Forgery (CVE-2025-32102)
Critical 5 Jun 2025 9 Feb 2026 CPAI-2025-12010 CVE-2025-25609
CVE-2025-25610
CVE-2025-25635
CVE-2025-45859
CVE-2025-45861
CVE-2025-45862
CVE-2025-45863
CVE-2025-45864
CVE-2025-45865
CVE-2025-45866
CVE-2025-45867
CVE-2025-6487
 TOTOLINK A3002R Buffer Overflow (CVE-2025-25609; CVE-2025-25610; CVE-2025-25635; CVE-2025-45859; CVE-2025-45861; CVE-2025-45862; CVE-2025-45863; CVE-2025-45864; CVE-2025-45865; CVE-2025-45866; CVE-2025-45867; CVE-2025-6487)
Medium 29 Apr 2025 9 Feb 2026 CPAI-2025-0234 CVE-2025-28142
 Dimax AC1200 Command Injection (CVE-2025-28142)
Critical 6 Jan 2025 9 Feb 2026 CPAI-2024-1218 CVE-2024-12987
 DrayTek Vigor Command Injection (CVE-2024-12987)
High 27 Nov 2025 8 Feb 2026 CPAI-2025-5493 CVE-2025-41115
 Grafana Multiple Products Privilege Escalation (CVE-2025-41115)
×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK