Home / 2021 Advisories Archive

2021 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
High	11 Aug 2021	11 Aug 2021	CPAI-2021-0498		CVE-2021-22160	Apache Pulsar JSON Web Token Authentication Bypass (CVE-2021-22160)
High	11 Aug 2021	11 Aug 2021	CPAI-2021-0499		CVE-2021-32932	Advantech iView deleteZtpConfig SQL Injection (CVE-2021-32932)
High	11 Aug 2021	11 Aug 2021	CPAI-2021-0500			Zoho ManageEngine Applications Manager URL monitor SQL Injection
Critical	11 Aug 2021	11 Aug 2021	CPAI-2019-2469		CVE-2019-13025	Compal ConnectBox Remote Code Execution (CVE-2019-13025)
Critical	10 Aug 2021	10 Aug 2021	CPAI-2021-0490	Microsoft CVE-2021-34480	CVE-2021-34480	Microsoft Scripting Engine Memory Corruption (CVE-2021-34480)
Critical	10 Aug 2021	10 Aug 2021	CPAI-2021-0491	Microsoft CVE-2021-34535	CVE-2021-34535	Microsoft Remote Desktop Client Remote Code Execution (CVE-2021-34535)
Critical	10 Aug 2021	10 Aug 2021	CPAI-2021-0493	Microsoft CVE-2021-26432	CVE-2021-26432	Microsoft Windows Services for NFS ONCRPC XDR Driver Remote Code Execution (CVE-2021-26432)
Critical	5 Aug 2021	5 Aug 2021	CPAI-2021-0464		CVE-2021-34074	Pandora FMS Arbitrary File Upload (CVE-2021-34074)
High	5 Aug 2021	5 Aug 2021	CPAI-2021-0492			Agent Tesla Panel Remote Code Execution
High	4 Aug 2021	4 Aug 2021	CPAI-2021-0483			WordPress Popular Posts Plugin Remote Code Execution
Medium	3 Aug 2021	3 Aug 2021	CPAI-2020-3374		CVE-2020-18229	PHPMyWind Cross Site Scripting (CVE-2020-18229)
High	3 Aug 2021	3 Aug 2021	CPAI-2020-3381		CVE-2020-28095	Tenda AC1200 Denial Of Service (CVE-2020-28095)
Critical	3 Aug 2021	3 Aug 2021	CPAI-2021-0488		CVE-2021-30000	Latrix Project SQL Injection (CVE-2021-30000)
High	2 Aug 2021	2 Aug 2021	CPAI-2021-0480			WordPress WooCommerce Plugin SQL Injection
Critical	2 Aug 2021	2 Aug 2021	CPAI-2021-0425		CVE-2021-30461	VoIPmonitor Remote Code Execution (CVE-2021-30461)
Critical	2 Aug 2021	2 Aug 2021	CPAI-2021-0389		CVE-2021-22911	Rocket.Chat NoSQL injection (CVE-2021-22911)
High	2 Aug 2021	2 Aug 2021	CPAI-2021-0328		CVE-2021-33514	NETGEAR Command Injection (CVE-2021-33514)
High	2 Aug 2021	2 Aug 2021	CPAI-2021-0368		CVE-2021-21389	WordPress BuddyPress Plugin Privilege Escalation (CVE-2021-21389)
High	28 Jul 2021	28 Jul 2021	CPAI-2020-1395		CVE-2020-35716	Belkin Linksys Denial Of Service (CVE-2020-35716)
Medium	27 Jul 2021	27 Jul 2021	CPAI-2020-0651			Nagios XI Remote Code Execution
High	27 Jul 2021	27 Jul 2021	CPAI-2021-0044			Open LiteSpeed Web Server Command Injection
High	27 Jul 2021	27 Jul 2021	CPAI-2021-0487			Microsoft Active Directory Certificate Services NTLM Relay
Critical	26 Jul 2021	26 Jul 2021	CPAI-2020-3377		CVE-2020-21787	CRMEB Arbitrary File Upload (CVE-2020-21787)
Critical	26 Jul 2021	26 Jul 2021	CPAI-2021-0475		CVE-2021-21809	Moodle Command Injection (CVE-2021-21809)
Critical	20 Jun 2021	26 Jul 2021	CPAI-2021-0416		CVE-2021-1498	Cisco HyperFlex HX Command Injection (CVE-2021-1498)
Medium	26 Jul 2021	26 Jul 2021	CPAI-2021-0481		CVE-2021-1879	Apple WebKit Use After Free (CVE-2021-1879)
High	26 Jul 2021	26 Jul 2021	CPAI-2021-0484		CVE-2021-30551	Google Chrome Heap Corruption (CVE-2021-30551)
High	26 Jul 2021	26 Jul 2021	CPAI-2021-0482		CVE-2021-21166	Google Chrome Heap Corruption (CVE-2021-21166)
High	26 Jul 2021	26 Jul 2021	CPAI-2021-0485		CVE-2021-33742	Microsoft Internet Explorer Out-of-Bounds Write (CVE-2021-33742)
High	30 May 2021	22 Jul 2021	CPAI-2016-1151		CVE-2016-2056	Xymon xymond Remote Code Execution (CVE-2016-2056)
High	21 Jul 2021	21 Jul 2021	CPAI-2021-0479		CVE-2021-20081	ManageEngine ServiceDesk Plus Command Injection (CVE-2021-20081)
High	20 Jul 2021	20 Jul 2021	CPAI-2021-0460			FiberHome Routers Command Injection
High	1 Jun 2021	20 Jul 2021	CPAI-2021-0304		CVE-2021-33393	IPFire Remote Code Execution (CVE-2021-33393)
Critical	19 Jul 2021	19 Jul 2021	CPAI-2018-1752		CVE-2018-11560 CVE-2018-12640	Insteon HD IP Camera Remote Code Execution (CVE-2018-11560; CVE-2018-12640)
Medium	15 Jul 2021	15 Jul 2021	CPAI-2020-3375		CVE-2020-3580	Cisco Adaptive Security Appliance Cross Site Scripting (CVE-2020-3580)
High	15 Jul 2021	15 Jul 2021	CPAI-2021-0461		CVE-2021-35464	ForgeRock OpenAM Remote Code Execution (CVE-2021-35464)
Critical	14 Jul 2021	14 Jul 2021	CPAI-2021-0477	Microsoft CVE-2021-34448	CVE-2021-34448	Microsoft Scripting Engine Memory Corruption (CVE-2021-34448)
High	13 Jul 2021	13 Jul 2021	CPAI-2021-0448	Microsoft CVE-2021-31979	CVE-2021-31979	Microsoft Windows Kernel Elevation of Privilege (CVE-2021-31979)
High	13 Jul 2021	13 Jul 2021	CPAI-2021-0449	Microsoft CVE-2021-33771	CVE-2021-33771	Microsoft Windows Kernel Elevation of Privilege (CVE-2021-33771)
High	13 Jul 2021	13 Jul 2021	CPAI-2021-0450	Microsoft CVE-2021-34449	CVE-2021-34449	Microsoft Win32k Elevation of Privilege (CVE-2021-34449)
High	13 Jul 2021	13 Jul 2021	CPAI-2021-0458	Microsoft CVE-2021-34467	CVE-2021-34467	Microsoft SharePoint Server Remote Code Execution (CVE-2021-34467)
High	13 Jul 2021	13 Jul 2021	CPAI-2021-0466	Adobe APSB21-51	CVE-2021-28635	Adobe Acrobat and Reader Use After Free (APSB21-51: CVE-2021-28635)
High	13 Jul 2021	13 Jul 2021	CPAI-2021-0467	Adobe APSB21-51	CVE-2021-28640	Adobe Acrobat and Reader Use After Free (APSB21-51: CVE-2021-28640)
High	11 Jul 2021	11 Jul 2021	CPAI-2021-0446			Netgear WNAP320 Command Injection
High	18 Apr 2021	8 Jul 2021	CPAI-2019-2451		CVE-2019-12840	Webmin Command Injection (CVE-2019-12840)
Critical	8 Jul 2021	8 Jul 2021	CPAI-2021-0465		CVE-2021-34527	Windows Print Spooler Remote Code Execution (CVE-2021-34527)
High	6 Jul 2021	6 Jul 2021	CPAI-2020-3376		CVE-2020-35576	TP-Link TL-WR841N Command Injection (CVE-2020-35576)
Critical	30 Jun 2021	30 Jun 2021	CPAI-2020-3363		CVE-2020-20092 CVE-2020-28063	ArticleCMS Arbitrary File Upload (CVE-2020-20092; CVE-2020-28063)
High	30 Jun 2021	30 Jun 2021	CPAI-2018-1750		CVE-2018-15133	Laravel Framework Remote Code Execution (CVE-2018-15133)
Critical	30 Jun 2021	30 Jun 2021	CPAI-2020-3373		CVE-2020-35441	Fangfa Content Management System SQL Injection (CVE-2020-35441)