Home / 2025 Advisories Archive

2025 Advisories Archive

Sort By: 2025  2024  2023  2022  2021  2020  2019  2018  2017  2016  2015  2014  2013  2012  2011  2010  2009  2008  2007  2006  2005  2004  1999  1998  

Security Gateway R75 and above

Security Advisories Subscription



Severity Date Published Date Updated Check Point Reference Source Industry Reference Description
Critical 20 Jan 2025 20 Jan 2025 CPAI-2023-1985 CVE-2023-31446
 Cassia Network Gateway Command Injection (CVE-2023-31446)
Critical 20 Jan 2025 20 Jan 2025 CPAI-2024-1239 CVE-2024-3552
 WordPress SalePHPscripts Web Directory Free Plugin SQL Injection (CVE-2024-3552)
High 16 Jan 2025 16 Jan 2025 CPAI-2024-1250 CVE-2024-43464
 Microsoft SharePoint Server Remote Code Execution (CVE-2024-43464)
Medium 16 Jan 2025 16 Jan 2025 CPAI-2024-1242 CVE-2024-0881
 WordPress Combo Blocks Plugin Authentication Bypass (CVE-2024-0881)
Critical 16 Jan 2025 16 Jan 2025 CPAI-2023-1983 CVE-2023-4521
 WordPress Moove Import XML and RSS Feeds Plugin Remote Code Execution (CVE-2023-4521)
Critical 16 Jan 2025 16 Jan 2025 CPAI-2024-1231 CVE-2024-8856
 WordPress Time Capsule Plugin Remote Code Execution (CVE-2024-8856)
High 16 Jan 2025 16 Jan 2025 CPAI-2024-1227 CVE-2024-21182
 Oracle WebLogic Server Remote Code Execution (CVE-2024-21182)
High 15 Jan 2025 15 Jan 2025 CPAI-2024-1241 CVE-2024-54819
 I Librarian Server-Side Request Forgery (CVE-2024-54819)
Medium 15 Jan 2025 15 Jan 2025 CPAI-2024-1233 CVE-2024-12343
 TP-Link VN020 F3v Buffer Overflow (CVE-2024-12343)
Medium 15 Jan 2025 15 Jan 2025 CPAI-2021-2280 CVE-2021-24202
CVE-2021-24203
 WordPress Elementor Website Builder Plugin Cross-Site Scripting (CVE-2021-24202; CVE-2021-24203)
High 15 Jan 2025 15 Jan 2025 CPAI-2024-1102 CVE-2024-10387
 Rockwell Automation ThinManager ThinServer Out-Of-Bounds Read (CVE-2024-10387)
Medium 15 Jan 2025 15 Jan 2025 CPAI-2024-1081 CVE-2024-10386
 Rockwell Automation ThinManager Authentication Bypass (CVE-2024-10386)
High 13 Jan 2025 13 Jan 2025 CPAI-2024-1234 CVE-2024-13129
 Roxy-WI Command Injection (CVE-2024-13129)
High 12 Jan 2025 12 Jan 2025 CPAI-2023-1984 CVE-2023-5003
 Active Directory / LDAP Integration WordPress Plugin Information Disclosure (CVE-2023-5003)
High 12 Jan 2025 12 Jan 2025 CPAI-2023-1981 CVE-2023-20888
 VMware VRealize Network Insight Insecure Deserialization (CVE-2023-20888)
Medium 12 Jan 2025 12 Jan 2025 CPAI-2024-1228 CVE-2024-2340
 Avada Information Disclosure (CVE-2024-2340)
Medium 1 Jan 2025 12 Jan 2025 CPAI-2024-1188 CVE-2024-5458
 PHP Authentication Bypass (CVE-2024-5458)
Medium 12 Jan 2025 12 Jan 2025 CPAI-2024-1170 CVE-2024-54003
 Jenkins Simple Queue Plugin Cross-Site Scripting (CVE-2024-54003)
High 12 Jan 2025 12 Jan 2025 CPAI-2024-1237 CVE-2024-32848
 Ivanti Endpoint Manager SQL Injection (CVE-2024-32848)
High 12 Jan 2025 12 Jan 2025 CPAI-2024-1229 CVE-2024-34779
 Ivanti Endpoint Manager SQL Injection (CVE-2024-34779)
Medium 12 Jan 2025 12 Jan 2025 CPAI-2024-1221 CVE-2024-47855
 Jenkins Denial of Service (CVE-2024-47855)
Medium 12 Jan 2025 12 Jan 2025 CPAI-2022-2161 CVE-2022-2856
 Google Chrome Open Redirect (CVE-2022-2856)
Critical 9 Jan 2025 9 Jan 2025 CPAI-2023-1982 CVE-2023-34563
 NETGEAR R6250 Buffer Overflow (CVE-2023-34563)
High 7 Jan 2025 7 Jan 2025 CPAI-2024-1225 CVE-2024-9122
 Google Chrome V8 Type Confusion (CVE-2024-9122)
Critical 7 Jan 2025 7 Jan 2025 CPAI-2024-1200 CVE-2024-40725
 HTTP Requests Smuggling (CVE-2024-40725)
High 7 Jan 2025 7 Jan 2025 CPAI-2024-1182 Microsoft SQL Server Management Studio Brute Force Login Attempt
Critical 6 Jan 2025 6 Jan 2025 CPAI-2018-2875 CVE-2018-17532
 Teltonika RUT9XX Command Injection (CVE-2018-17532)
High 5 Jan 2025 5 Jan 2025 CPAI-2018-2871 CVE-2018-7777
 Schneider Electric U.motion Builder Command Injection (CVE-2018-7777)
Medium 5 Jan 2025 5 Jan 2025 CPAI-2024-1214 CVE-2024-50320
 Ivanti Avalanche Denial of Service (CVE-2024-50320)
High 5 Jan 2025 5 Jan 2025 CPAI-2023-1455 CVE-2023-46262
 Ivanti Avalanche Server-Side Request Forgery (CVE-2023-46262)
High 5 Jan 2025 5 Jan 2025 CPAI-2021-1762 CVE-2021-22718
 Schneider Electric C-Bus Toolkit Directory Traversal (CVE-2021-22718)
High 2 Jan 2025 2 Jan 2025 CPAI-2014-2630 CVE-2014-6324
 Microsoft Windows Kerberos Key Distribution Center Privilege Escalation (CVE-2014-6324)
Medium 1 Jan 2025 1 Jan 2025 CPAI-2023-1970 CVE-2023-24488
 Citrix Gateway Cross-Site Scripting (CVE-2023-24488)
Critical 1 Jan 2025 1 Jan 2025 CPAI-2020-4264 CVE-2020-27130
 Cisco Security Manager Directory Traversal (CVE-2020-27130)
High 1 Jan 2025 1 Jan 2025 CPAI-2021-2236 CVE-2021-34991
 NETGEAR EX3700 Firmware Remote Code Execution (CVE-2021-34991)
High 1 Jan 2025 1 Jan 2025 CPAI-2024-1196 CVE-2024-34783
 Ivanti Endpoint Manager SQL Injection (CVE-2024-34783)
High 1 Jan 2025 1 Jan 2025 CPAI-2024-1134 CVE-2024-8672
 WordPress Widget Options Plugin Command Injection (CVE-2024-8672)
Medium 1 Jan 2025 1 Jan 2025 CPAI-2024-0638 CVE-2024-6497
 WordPress Project SEO Plugin SQL Injection (CVE-2024-6497)
Critical 1 Jan 2025 1 Jan 2025 CPAI-2023-1573 CVE-2023-6933
 WordPress WPEngine Better Search Replace Plugin Insecure Deserialization (CVE-2023-6933)
High 1 Jan 2025 1 Jan 2025 CPAI-2022-2021 CVE-2022-27643
 NETGEAR R6400 Firmware Remote Code Execution (CVE-2022-27643)
Medium 1 Jan 2025 1 Jan 2025 CPAI-2022-1733 CVE-2022-46870
 Apache Zeppelin Cross-Site Scripting (CVE-2022-46870)
Critical 1 Jan 2025 1 Jan 2025 CPAI-2023-0581 CVE-2023-36808
 GLPI-Project GLPI SQL Injection (CVE-2023-36808)
Medium 1 Jan 2025 1 Jan 2025 CPAI-2022-1609 CVE-2022-46768
 Zabbix Multiple Products Arbitrary File Read (CVE-2022-46768)
×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK