Home / 2025 Advisories Archive

2025 Advisories Archive

Sort By: 2025  2024  2023  2022  2021  2020  2019  2018  2017  2016  2015  2014  2013  2012  2011  2010  2009  2008  2007  2006  2005  2004  1999  1998  

Security Gateway R75 and above

Security Advisories Subscription



Severity Date Published Date Updated Check Point Reference Source Industry Reference Description
High 23 Apr 2025 23 Apr 2025 CPAI-2023-2034 CVE-2023-50780
 Apache ActiveMQ Artemis Remote Code Execution (CVE-2023-50780)
Critical 22 Apr 2025 22 Apr 2025 CPAI-2024-1600 CVE-2024-12084
 Rsync Buffer Overflow (CVE-2024-12084)
Medium 22 Apr 2025 22 Apr 2025 CPAI-2024-1597 CVE-2024-44176
 Apple Multiple Products Denial of Service (CVE-2024-44176)
Medium 22 Apr 2025 22 Apr 2025 CPAI-2020-4302 CVE-2020-8264
 Ruby on Rails Cross-Site Scripting (CVE-2020-8264)
Medium 22 Apr 2025 22 Apr 2025 CPAI-2021-2306 CVE-2021-29490
 Jellyfin Server-Side Request Forgery (CVE-2021-29490)
High 22 Apr 2025 22 Apr 2025 CPAI-2021-2305 CVE-2021-21311
 Adminer Server-Side Request Forgery (CVE-2021-21311)
High 22 Apr 2025 22 Apr 2025 CPAI-2025-0194 CVE-2025-3539
CVE-2025-3540
CVE-2025-3541
CVE-2025-3542
CVE-2025-3543
CVE-2025-3544
CVE-2025-3545
CVE-2025-3546
 H3C Magic Series Command Injection (CVE-2025-3539; CVE-2025-3540; CVE-2025-3541; CVE-2025-3542; CVE-2025-3543; CVE-2025-3544; CVE-2025-3545; CVE-2025-3546)
High 21 Apr 2025 21 Apr 2025 CPAI-2024-1601 CVE-2024-12849
 WordPress Error Log Viewer Plugin Arbitrary File Read (CVE-2024-12849)
High 20 Apr 2025 20 Apr 2025 CPAI-2021-2310 CVE-2021-20041
 SonicWall Sma 200 Firmware Authentication Bypass (CVE-2021-20041)
Critical 20 Apr 2025 20 Apr 2025 CPAI-2021-2309 CVE-2021-20042
 SonicWall Sma 200 Firmware Authentication Bypass (CVE-2021-20042)
Critical 20 Apr 2025 20 Apr 2025 CPAI-2022-2204 CVE-2022-24310
 Schneider Electric Interactive Graphical SCADA System Integer Overflow (CVE-2022-24310)
Medium 20 Apr 2025 20 Apr 2025 CPAI-2024-1530 CVE-2024-40777
 Apple Multiple Products Out-Of-Bounds Access (CVE-2024-40777)
Critical 20 Apr 2025 20 Apr 2025 CPAI-2024-1452 CVE-2024-47009
 Ivanti Avalanche Authentication Bypass (CVE-2024-47009)
Critical 12 Mar 2025 17 Apr 2025 CPAI-2025-0077 Argument Injection Over HTTP
Critical 2 Feb 2025 17 Apr 2025 CPAI-2024-1351 CVE-2024-53704
 SonicWall SonicOS Authentication Bypass (CVE-2024-53704)
Critical 6 Feb 2025 16 Apr 2025 CPAI-2024-1321 CVE-2018-3760
CVE-2021-25864
CVE-2024-48914
CVE-2025-2264
 Static Files Folders Directory Traversal (CVE-2018-3760; CVE-2021-25864; CVE-2024-48914; CVE-2025-2264)
High 15 Apr 2025 15 Apr 2025 CPAI-2023-2028 CVE-2023-22952
 SugarCRM Code Injection (CVE-2023-22952)
Critical 15 Apr 2025 15 Apr 2025 CPAI-2024-1581 CVE-2024-47908
 Ivanti Cloud Services Appliance Command Injection (CVE-2024-47908)
Medium 15 Apr 2025 15 Apr 2025 CPAI-2024-1571 CVE-2024-34781
 Ivanti Endpoint Manager SQL Injection (CVE-2024-34781)
Medium 15 Apr 2025 15 Apr 2025 CPAI-2024-1472 CVE-2024-3274
 D-Link DNS Series Information Disclosure (CVE-2024-3274)
Medium 14 Apr 2025 14 Apr 2025 CPAI-2019-3272 CVE-2019-6842
CVE-2019-6843
CVE-2019-6844
 Schneider-Electric Modicon Denial of Service (CVE-2019-6842; CVE-2019-6843; CVE-2019-6844)
High 14 Apr 2025 14 Apr 2025 CPAI-2019-3271 CVE-2019-6848
 Schneider Electric Modicon Denial of Service (CVE-2019-6848)
Critical 14 Apr 2025 14 Apr 2025 CPAI-2025-0190 CVE-2025-2620
 D-Link DAP-1620 Buffer Overflow (CVE-2025-2620)
Critical 14 Apr 2025 14 Apr 2025 CPAI-2017-1955 CVE-2017-6026
 Schneider Electric Modicon Remote Code Execution (CVE-2017-6026)
Medium 14 Apr 2025 14 Apr 2025 CPAI-2019-3270 CVE-2019-6841
 Schneider Electric Modicon Denial of Service (CVE-2019-6841)
High 14 Apr 2025 14 Apr 2025 CPAI-2023-2023 CVE-2023-27159
 Appwrite Server-Side Request Forgery (CVE-2023-27159)
High 20 Mar 2025 14 Apr 2025 CPAI-2025-0098 CVE-2025-0411
 7-Zip Remote Code Execution (CVE-2025-0411)
High 10 Apr 2025 10 Apr 2025 CPAI-2019-3269 CVE-2019-6851
 Schneider-Electric Modicon Information Disclosure (CVE-2019-6851)
Critical 10 Apr 2025 10 Apr 2025 CPAI-2018-2910 CVE-2018-7842
 Schneider-Electric Modicon Privilege Escalation (CVE-2018-7842)
Medium 10 Apr 2025 10 Apr 2025 CPAI-2020-4289 CVE-2020-2230
 Jenkins Cross-Site Scripting (CVE-2020-2230)
Medium 9 Apr 2025 9 Apr 2025 CPAI-2025-0188 Adobe APSB25-15 CVE-2025-30294
 Adobe ColdFusion Improper Input Validation (APSB25-15: CVE-2025-30294)
High 9 Apr 2025 9 Apr 2025 CPAI-2025-0187 Adobe APSB25-15 CVE-2025-30285
 Adobe ColdFusion Deserialization of Untrusted Data (APSB25-15: CVE-2025-30285)
Medium 9 Apr 2025 9 Apr 2025 CPAI-2025-0186 Adobe APSB25-15 CVE-2025-30292
 Adobe ColdFusion Cross-Site Scripting (APSB25-15: CVE-2025-30292)
High 9 Apr 2025 9 Apr 2025 CPAI-2025-0185 Adobe APSB25-15 CVE-2025-30290
 Adobe ColdFusion Directory Traversal (APSB25-15: CVE-2025-30290)
High 9 Apr 2025 9 Apr 2025 CPAI-2025-0183 Adobe APSB25-15 CVE-2025-30289
 Adobe ColdFusion Command Injection (APSB25-15: CVE-2025-30289)
High 9 Apr 2025 9 Apr 2025 CPAI-2025-0182 Adobe APSB25-15 CVE-2025-30287
 Adobe ColdFusion Improper Authentication (APSB25-15: CVE-2025-30287)
Critical 9 Apr 2025 9 Apr 2025 CPAI-2025-0181 Adobe APSB25-15 CVE-2025-30281
 Adobe ColdFusion Improper Access Control (APSB25-15: CVE-2025-30281)
Critical 9 Apr 2025 9 Apr 2025 CPAI-2024-1545 CVE-2024-5753
CVE-2024-5827
 Vanna.AI SQL Injection (CVE-2024-5753; CVE-2024-5827)
Critical 8 Apr 2025 8 Apr 2025 CPAI-2025-0179 Microsoft CVE-2025-26670 CVE-2025-26670
 Microsoft Lightweight Directory Access Protocol Client Remote Code Execution (CVE-2025-26670)
High 8 Apr 2025 8 Apr 2025 CPAI-2025-0178 Microsoft CVE-2025-27480 CVE-2025-27480
 Windows Remote Desktop Services Remote Code Execution Vulnerability (CVE-2025-27480)
Critical 8 Apr 2025 8 Apr 2025 CPAI-2025-0173 Microsoft CVE-2025-29793 CVE-2025-29793
 Microsoft SharePoint Remote Code Execution (CVE-2025-29793)
High 14 Jan 2025 8 Apr 2025 CPAI-2025-0003 Microsoft CVE-2025-21309 CVE-2025-21309
CVE-2025-24035
CVE-2025-24045
CVE-2025-27482
 Microsoft Windows Remote Desktop Services Remote Code Execution (CVE-2025-21309; CVE-2025-24035; CVE-2025-24045; CVE-2025-27482)
Critical 8 Apr 2025 8 Apr 2025 CPAI-2024-1515 CVE-2024-43919
 WordPress YARPP Plugin Authentication Bypass (CVE-2024-43919)
High 8 Apr 2025 8 Apr 2025 CPAI-2024-1457 CVE-2024-43461
 Microsoft Windows Spoofing (CVE-2024-43461)
Critical 7 Apr 2025 7 Apr 2025 CPAI-2025-0169 CVE-2025-0851
 Deep Java Library Path Traversal (CVE-2025-0851)
High 7 Apr 2025 7 Apr 2025 CPAI-2022-2202 CVE-2022-24314
 Schneider-Electric Interactive Graphical SCADA System Memory Corruption (CVE-2022-24314)
Medium 7 Apr 2025 7 Apr 2025 CPAI-2020-4299 CVE-2020-12027
 Rockwell Automation FactoryTalk View SE Information Disclosure (CVE-2020-12027)
High 7 Apr 2025 7 Apr 2025 CPAI-2020-4296 CVE-2020-5807
 Rockwell Automation FactoryTalk Diagnostics Denial of Service (CVE-2020-5807)
Critical 7 Apr 2025 7 Apr 2025 CPAI-2024-1516 CVE-2024-48884
 Fortinet Multiple Products Directory Traversal (CVE-2024-48884)
High 6 Apr 2025 6 Apr 2025 CPAI-2017-1954 CVE-2017-12637
 SAP NetWeaver Application Server Java Directory Traversal (CVE-2017-12637)
×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK