Home / 2018 Advisories Archive

2018 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
High	26 Dec 2018	17 Jul 2019	CPAI-2018-1267		CVE-2018-8040	Apache Traffic Server ESI Plugin Cookie Header Information Disclosure (CVE-2018-8040)
Medium	22 Nov 2018	11 Jul 2019	CPAI-2019-0026		CVE-2018-5443	WebAccess Node ChkLogin SQL Injection (CVE-2018-5443) - Ver2
High	13 Feb 2018	11 Jul 2019	CPAI-2018-0122	Adobe Security Bulletin APSB18-02	CVE-2018-4907	Adobe Acrobat and Reader Out-of-bounds read (APSB18-02: CVE-2018-4907)
High	19 Nov 2018	10 Jul 2019	CPAI-2018-1285			Multiple CMS Platforms SQL Injection Attempt Over URL
Critical	9 Dec 2018	30 Jun 2019	CPAI-2018-1274		CVE-2018-1002105	Kubernetes API server Authentication Bypass (CVE-2018-1002105)
Critical	22 Apr 2018	12 Jun 2019	CPAI-2018-0337		CVE-2018-2628 CVE-2018-2893	Oracle WebLogic WLS Core Component Remote Code Execution (CVE-2018-2628; CVE-2018-2893)
High	31 Dec 2018	12 Jun 2019	CPAI-2019-0017		CVE-2018-4233	Apple WebKit Memory Corruption (CVE-2018-4233)
High	10 Jul 2018	16 May 2019	CPAI-2018-0692	Adobe Security Bulletin APSB18-21	CVE-2018-5044 CVE-2019-7780 CVE-2019-7771	Adobe Acrobat and Reader Out-of-bounds read (APSB18-21: CVE-2018-5044; CVE-2019-7780; CVE-2019-7771)
High	19 Jul 2018	6 May 2019	CPAI-2018-0713			Unicorn Suspicious Evasion Technique
Critical	8 May 2018	30 Apr 2019	CPAI-2018-0348	Microsoft CVE-2018-8133	CVE-2018-8133	Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8133)
High	10 Jul 2018	30 Apr 2019	CPAI-2018-0608	Adobe Security Bulletin APSB18-21	CVE-2018-5019	Adobe Acrobat and Reader Out-of-bounds read (APSB18-21: CVE-2018-5019)
High	11 Mar 2018	24 Apr 2019	CPAI-2019-0368			Spelevo Exploit Kit Landing Page
High	2 Oct 2018	15 Apr 2019	CPAI-2018-1031		CVE-2018-12015	Perl Archive Tar Arbitrary File Overwrite (CVE-2018-12015)
High	14 Aug 2018	31 Mar 2019	CPAI-2018-0829		CVE-2018-8414	Microsoft Windows Shell Remote Code Execution (CVE-2018-8414)
High	27 Sep 2018	27 Mar 2019	CPAI-2018-1019		CVE-2017-17055	Web Servers Code Execution Over HTTP Request Parameters (CVE-2017-17055)
High	22 Nov 2018	20 Mar 2019	CPAI-2019-0089		CVE-2017-15944	Paloaltonetworks Panos Remote Code Execution (CVE-2017-15944) - Ver2
Critical	17 Apr 2018	20 Mar 2019	CPAI-2018-0323		CVE-2018-1273	Pivotal Spring Commons Remote Code Execution (CVE-2018-1273)
Critical	13 May 2018	19 Mar 2019	CPAI-2018-0459		CVE-2018-10561	Dasan GPON Router Authentication Bypass (CVE-2018-10561)
High	14 May 2018	19 Mar 2019	CPAI-2018-0508		CVE-2018-5146	Mozilla Firefox Vorbis Audio Residue Codebook Out of Bounds Write (CVE-2018-5146)
High	4 Sep 2018	12 Mar 2019	CPAI-2018-0863			Fallout Exploit Kit Landing Page
High	8 May 2018	11 Mar 2019	CPAI-2018-0349	Microsoft CVE-2018-8174	CVE-2018-8174	Microsoft Windows VBScript Engine Remote Code Execution (CVE-2018-8174)
Critical	5 Dec 2018	7 Mar 2019	CPAI-2018-1131	Adobe Security Bulletin APSB18-42	CVE-2018-15982	Adobe Flash Player Use After Free (APSB18-42: CVE-2018-15982)
Critical	19 Feb 2018	7 Mar 2019	CPAI-2018-0152			GrandSoft Exploit Kit Landing Page
Critical	4 Feb 2018	7 Mar 2019	CPAI-2018-0052	Adobe Security Bulletin APSB18-03	CVE-2018-4878	Adobe Flash Player Use After Free (APSB18-03: CVE-2018-4878)
High	19 Nov 2018	6 Mar 2019	CPAI-2018-1097			XML Containing Malicious File Stream
High	13 Nov 2018	5 Mar 2019	CPAI-2018-1059	Microsoft CVE-2018-8552	CVE-2018-8552	Microsoft Windows Scripting Engine Memory Corruption (CVE-2018-8552)
High	22 Nov 2018	5 Mar 2019	CPAI-2019-0030			Trend Micro IWSVA Domain List Bdn Paremeter Command Injection - Ver2
High	22 Nov 2018	5 Mar 2019	CPAI-2019-0031			Trend Micro IWSVA Deploywizard Haport Parameter Command Injection - Ver2
High	22 Nov 2018	5 Mar 2019	CPAI-2019-0029			Trend Micro IWSVA Parameter Command Injection - Ver2
High	23 Aug 2018	3 Mar 2019	CPAI-2018-0850		CVE-2018-8006	Apache ActiveMQ QueueFilter Cross-Site Scripting (CVE-2018-8006)
High	27 Nov 2018	3 Mar 2019	CPAI-2018-1111			Magecart Credit Card Stealer
High	13 Nov 2018	3 Mar 2019	CPAI-2018-1044	Microsoft CVE-2018-8582	CVE-2018-8582	Microsoft Outlook Remote Code Execution (CVE-2018-8582)
High	12 Jun 2018	3 Mar 2019	CPAI-2018-0532	Microsoft CVE-2018-8210	CVE-2018-8210	Microsoft Windows Remote Code Execution (CVE-2018-8210)
High	13 Feb 2018	27 Feb 2019	CPAI-2018-0116	Adobe Security Bulletin APSB18-02	CVE-2018-4904	Adobe Acrobat and Reader Heap Overflow (APSB18-02: CVE-2018-4904)
High	2 Oct 2018	27 Feb 2019	CPAI-2018-0904	Adobe Security Bulletin APSB18-30	CVE-2018-12855	Adobe Acrobat and Reader Buffer Errors (APSB18-30: CVE-2018-12855)
High	15 Apr 2018	27 Feb 2019	CPAI-2018-0278	Microsoft CVE-2018-0950	CVE-2018-0950	Microsoft Office Information Disclosure (CVE-2018-0950)
Critical	11 Dec 2018	27 Feb 2019	CPAI-2018-1122	Microsoft CVE-2018-8631	CVE-2018-8631	Microsoft Internet Explorer Memory Corruption (CVE-2018-8631)
High	13 Mar 2018	26 Feb 2019	CPAI-2018-0159	Microsoft CVE-2018-0893	CVE-2018-0893	Microsoft Edge Scripting Engine Memory Corruption (CVE-2018-0893)
High	25 Dec 2018	24 Feb 2019	CPAI-2019-0001		CVE-2018-19615	Rockwell Automation Allen-Bradley PowerMonitor 1000 Cross-Site Scripting (CVE-2018-19615)
Medium	25 Nov 2018	21 Feb 2019	CPAI-2018-1106		CVE-2018-7514	OMRON CX-One SBA File Parsing Buffer Overflow (CVE-2018-7514)
Critical	29 Mar 2018	20 Feb 2019	CPAI-2018-0192		CVE-2018-7600	Drupal Core Remote Code Execution (CVE-2018-7600)
High	27 Sep 2018	17 Feb 2019	CPAI-2018-0984		CVE-2018-6692	Belkin Wemo Insight Smart Plug Buffer Overflow (CVE-2018-6692)
Low	9 Dec 2018	13 Feb 2019	CPAI-2018-1226		CVE-2018-7503	Advantech WebAccess NMS DownloadAction Directory Traversal (CVE-2018-7503)
Critical	29 Mar 2018	5 Feb 2019	CPAI-2018-0188			Suspicious Exploit Kit Website Redirection
Critical	6 May 2018	4 Feb 2019	CPAI-2018-0418			Multiple OS Malicious Shellcode Remote Code Execution - ver2
High	22 Oct 2018	24 Jan 2019	CPAI-2019-0058		CVE-2018-10594	Delta Electronics Delta Industrial Automation Buffer Overflow (CVE-2018-10594)
High	6 Dec 2018	23 Jan 2019	CPAI-2018-1224		CVE-2017-8977	HPE Moonshot Provisioning Manager Appliance server_response Directory Traversal (CVE-2017-8977)
Low	2 May 2018	23 Jan 2019	CPAI-2018-0364		CVE-2017-1000117	Git ssh URL Processing Command Execution (CVE-2017-1000117)
Critical	12 Sep 2018	23 Jan 2019	CPAI-2018-0881		CVE-2018-8475	Microsoft Windows Remote Code Execution (CVE-2018-8475)
High	26 Dec 2018	23 Jan 2019	CPAI-2018-1286		CVE-2018-20377	Orange Livebox ADSL modem Information Disclosure (CVE-2018-20377)

Network

Cloud

Mobile

Endpoint

Security Management

Business Size

Topic

Industries

Support

Training

Services

Channel Partners

Technology Partners

Partner Portal

Resources

Downloads and Documentation

Cyber Security Insights

2018 Advisories Archive