Home / 2025 Advisories Archive

2025 Advisories Archive

Sort By: 2025  2024  2023  2022  2021  2020  2019  2018  2017  2016  2015  2014  2013  2012  2011  2010  2009  2008  2007  2006  2005  2004  1999  1998  

Security Gateway R75 and above

Security Advisories Subscription



Severity Date Published Date Updated Check Point Reference Source Industry Reference Description
Critical 4 Dec 2025 4 Dec 2025 CPAI-2025-7812 CVE-2025-55182
 React Server Components Remote Code Execution (CVE-2025-55182)
Critical 7 Jan 2025 4 Dec 2025 CPAI-2025-7810 CVE-2024-40725
CVE-2025-55315
 HTTP Requests Smuggling (CVE-2024-40725; CVE-2025-55315)
High 4 Dec 2025 4 Dec 2025 CPAI-2025-7756 CVE-2025-5113
 Diviotec Multiple Products Command Injection (CVE-2025-5113)
High 4 Dec 2025 4 Dec 2025 CPAI-2025-7760 CVE-2025-61913
 Flowise Path Traversal (CVE-2025-61913)
High 4 Dec 2025 4 Dec 2025 CPAI-2025-7789 CVE-2025-13797
CVE-2025-13798
CVE-2025-13799
CVE-2025-13800
 Feiyuxing Multiple Products Command Injection (CVE-2025-13797; CVE-2025-13798; CVE-2025-13799; CVE-2025-13800)
Medium 4 Dec 2025 4 Dec 2025 CPAI-2025-7722 CVE-2025-58747
 LangGenius Dify Cross-Site Scripting (CVE-2025-58747)
High 4 Dec 2025 4 Dec 2025 CPAI-2025-7763 CVE-2025-43989
 Shenzhen Tuoshi NR500-EA Command Injection (CVE-2025-43989)
Critical 12 Nov 2025 4 Dec 2025 CPAI-2025-7783 CVE-2024-52274
CVE-2025-25343
CVE-2025-25505
CVE-2025-29030
CVE-2025-32010
CVE-2025-50260
CVE-2025-50528
CVE-2025-5855
CVE-2025-60337
CVE-2025-60338
CVE-2025-60340
CVE-2025-60342
 Tenda AC6 Buffer Overflow (CVE-2024-52274; CVE-2025-25343; CVE-2025-25505; CVE-2025-29030; CVE-2025-32010; CVE-2025-50260; CVE-2025-50528; CVE-2025-5855; CVE-2025-60337; CVE-2025-60338; CVE-2025-60340; CVE-2025-60342)
High 16 Oct 2025 4 Dec 2025 CPAI-2025-7767 Microsoft CVE-2025-59287 CVE-2025-59287
 Microsoft Windows Server Update Service Insecure Deserialization (CVE-2025-59287)
High 6 Oct 2025 4 Dec 2025 CPAI-2025-7761 CVE-2025-61882
CVE-2025-61884
 Oracle Multiple Products Remote Code Execution (CVE-2025-61882; CVE-2025-61884)
Critical 2 Dec 2025 2 Dec 2025 CPAI-2025-6709 CVE-2025-2828
 LangChain Community Server-Side Request Forgery (CVE-2025-2828)
High 2 Dec 2025 2 Dec 2025 CPAI-2025-6738 CVE-2025-43979
 FIRSTNUM JC21A-04 Command Injection (CVE-2025-43979)
High 2 Dec 2025 2 Dec 2025 CPAI-2025-5385 CVE-2025-63207
 R.V.R Elettronica TEX Authentication Bypass (CVE-2025-63207)
High 2 Dec 2025 2 Dec 2025 CPAI-2024-2593 CVE-2024-42561
 Krishna9772 Pharmacy Management System SQL Injection (CVE-2024-42561)
Critical 2 Dec 2025 2 Dec 2025 CPAI-2024-2591 CVE-2024-39225
 GL-iNet Multiple Products Remote Code Execution (CVE-2024-39225)
High 2 Dec 2025 2 Dec 2025 CPAI-2018-3158 CVE-2018-6407
 Conceptronic CIPCAMPTIWL Denial of Service (CVE-2018-6407)
High 2 Dec 2025 2 Dec 2025 CPAI-2025-6726 CVE-2025-3914
 WordPress Aeropage Sync for Airtable Plugin Arbitrary File Upload (CVE-2025-3914)
Critical 19 Jun 2025 2 Dec 2025 CPAI-2025-6895 CVE-2025-32966
CVE-2025-49002
 DataEase Remote Code Execution (CVE-2025-32966; CVE-2025-49002)
High 1 Dec 2025 1 Dec 2025 CPAI-2024-2720 CVE-2024-53375
 TP-Link Archer AXE75 Command Injection (CVE-2024-53375)
Critical 1 Dec 2025 1 Dec 2025 CPAI-2022-2816 CVE-2022-23944
 Apache ShenYu Information Disclosure (CVE-2022-23944)
High 1 Dec 2025 1 Dec 2025 CPAI-2024-2725 CVE-2024-8181
 Flowise Authentication Bypass (CVE-2024-8181)
High 1 Dec 2025 1 Dec 2025 CPAI-2023-2773 CVE-2023-35193
CVE-2023-35194
 Peplink Surf SOHO Command Injection (CVE-2023-35193; CVE-2023-35194)
High 30 Nov 2025 30 Nov 2025 CPAI-2025-5933 CVE-2025-34322
CVE-2025-34323
 Nagios Log Server Command Injection (CVE-2025-34322; CVE-2025-34323)
High 30 Nov 2025 30 Nov 2025 CPAI-2025-5915 CVE-2025-9525
CVE-2025-9526
CVE-2025-9527
 Linksys E1700 Buffer Overflow (CVE-2025-9525; CVE-2025-9526; CVE-2025-9527)
High 30 Nov 2025 30 Nov 2025 CPAI-2024-2632 CVE-2024-22544
 Linksys E1700 Command Injection (CVE-2024-22544)
High 30 Nov 2025 30 Nov 2025 CPAI-2025-5968 CVE-2025-10680
 OpenVPN Command Injection (CVE-2025-10680)
High 30 Nov 2025 30 Nov 2025 CPAI-2025-5929 CVE-2025-9501
 WordPress W3 Total Cache Plugin Command Injection (CVE-2025-9501)
High 30 Nov 2025 30 Nov 2025 CPAI-2025-5890 CVE-2025-46704
 Advantech iView Directory Traversal (CVE-2025-46704)
High 30 Nov 2025 30 Nov 2025 CPAI-2025-5887 CVE-2025-53475
 Advantech iView SQL Injection (CVE-2025-53475)
Critical 8 Sep 2025 30 Nov 2025 CPAI-2025-5950 CVE-2025-11117
CVE-2025-11418
CVE-2025-11423
CVE-2025-12232
CVE-2025-12233
CVE-2025-12234
CVE-2025-12235
CVE-2025-12236
CVE-2025-8180
CVE-2025-9006
CVE-2025-9007
CVE-2025-9443
CVE-2025-9748
 Tenda CH22 Buffer Overflow (CVE-2025-11117; CVE-2025-11418; CVE-2025-11423; CVE-2025-12232; CVE-2025-12233; CVE-2025-12234; CVE-2025-12235; CVE-2025-12236; CVE-2025-8180; CVE-2025-9006; CVE-2025-9007; CVE-2025-9443; CVE-2025-9748)
High 27 Nov 2025 27 Nov 2025 CPAI-2025-5493 CVE-2025-41115
 Grafana Multiple Products Privilege Escalation (CVE-2025-41115)
High 27 Nov 2025 27 Nov 2025 CPAI-2023-2711 CVE-2023-39456
 Apache Traffic Server Denial of Service (CVE-2023-39456)
High 6 Aug 2025 27 Nov 2025 CPAI-2025-0677 CVE-2025-49533
 Adobe Experience Manager Insecure Deserialization (CVE-2025-49533)
High 27 Nov 2025 27 Nov 2025 CPAI-2025-0280 CVE-2025-3820
 Tenda W12 and i24 Buffer Overflow (CVE-2025-3820)
Critical 31 Mar 2025 27 Nov 2025 CPAI-2025-2021 CVE-2025-2825
CVE-2025-31161
 CrushFTP Authentication Bypass (CVE-2025-2825; CVE-2025-31161)
Critical 6 Apr 2025 27 Nov 2025 CPAI-2025-0120 CVE-2025-22896
CVE-2025-24865
 mySCADA myPRO Information Disclosure (CVE-2025-22896; CVE-2025-24865)
High 26 Nov 2025 26 Nov 2025 CPAI-2025-5063 CVE-2025-9377
 TP-Link Multiple Routers Command Injection (CVE-2025-9377)
Critical 26 Nov 2025 26 Nov 2025 CPAI-2025-5047 Compressed Files Malicious Obfuscations
Critical 23 Oct 2025 26 Nov 2025 CPAI-2025-4987 CVE-2025-54236
 Adobe Multiple Products Remote Code Execution (CVE-2025-54236)
High 26 Nov 2025 26 Nov 2025 CPAI-2025-0712 CVE-2025-6023
 Grafana OSS Cross-Site Scripting (CVE-2025-6023)
High 25 Nov 2025 25 Nov 2025 CPAI-2025-4963 CVE-2025-59528
 Flowise Remote Code Execution (CVE-2025-59528)
High 25 Nov 2025 25 Nov 2025 CPAI-2025-4961 CVE-2025-59434
 Flowise Information Disclosure (CVE-2025-59434)
High 12 Nov 2025 25 Nov 2025 CPAI-2025-4965 CVE-2025-51383
CVE-2025-51384
CVE-2025-51385
CVE-2025-9938
 D-Link DI Multiple Products Buffer Overflow (CVE-2025-51383; CVE-2025-51384; CVE-2025-51385; CVE-2025-9938)
High 23 Mar 2025 25 Nov 2025 CPAI-2024-2538 CVE-2024-53675
 HPE Insight Remote Support XML External Entity Injection (CVE-2024-53675)
High 24 Nov 2025 24 Nov 2025 CPAI-2022-2760 CVE-2022-36799
 Atlassian Jira Remote Code Execution (CVE-2022-36799)
High 24 Nov 2025 24 Nov 2025 CPAI-2025-4946 CVE-2025-44823
 Nagios Log Server Information Disclosure (CVE-2025-44823)
High 24 Nov 2025 24 Nov 2025 CPAI-2023-2652 CVE-2023-23969
 Django Denial of Service (CVE-2023-23969)
High 24 Nov 2025 24 Nov 2025 CPAI-2025-4885 CVE-2024-47165
CVE-2025-5320
 Gradio Authentication Bypass (CVE-2024-47165; CVE-2025-5320)
Critical 23 Nov 2025 23 Nov 2025 CPAI-2025-4875 CVE-2025-61757
 Oracle Identity Manager Authentication Bypass (CVE-2025-61757)
High 23 Nov 2025 23 Nov 2025 CPAI-2025-4802 CVE-2025-13315
 Twonky Server Authentication Bypass (CVE-2025-13315)
×
Image  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK