Lucene search
K
Checkpoint AdvisoriesRecent

13538 matches found

Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•3 views

Microsoft Windows Installer Elevation of Privilege (CVE-2022-21908)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS5.8AI score0.00908EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•4 views

Adobe Acrobat and Reader Use After Free (APSB22-01: CVE-2021-44710)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9.3CVSS5.6AI score0.11613EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•5 views

Microsoft Windows User Profile Service Elevation of Privilege (CVE-2022-21919)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.9CVSS6AI score0.0295EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•5 views

Adobe Acrobat and Reader Out-of-bounds Write (APSB22-01: CVE-2021-45068)

An out of bounds write vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

6.8CVSS3.5AI score0.12264EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•5 views

Adobe Acrobat and Reader Out-of-bounds Read (APSB22-01: CVE-2021-44715)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

4.3CVSS3.6AI score0.14701EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•5 views

Microsoft Windows Common Log File System Driver Elevation of Privilege (CVE-2022-21916)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS8.6AI score0.01031EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•11 views

Microsoft Windows Win32k Elevation of Privilege (CVE-2022-21882)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS5.8AI score0.55711EPSS
Exploits7
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•4 views

Adobe Acrobat and Reader Out-of-bounds Read (APSB22-01: CVE-2021-44742)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

4.3CVSS3.6AI score0.05856EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•6 views

Adobe Acrobat and Reader Access of Uninitialized Pointer (APSB22-01: CVE-2021-44705)

A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

9.3CVSS6.3AI score0.07409EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•7 views

Adobe Acrobat and Reader Use After Free (APSB22-01: CVE-2021-45062)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9.3CVSS5.6AI score0.16497EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•6 views

Adobe Acrobat and Reader Out-of-bounds Write (APSB22-01: CVE-2021-45061)

An out of bounds write vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

9.3CVSS3.5AI score0.07869EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•5 views

Adobe Acrobat and Reader Out-of-bounds Read (APSB22-01: CVE-2021-45060)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

9.3CVSS3.6AI score0.08618EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•7 views

Adobe Acrobat and Reader Use After Free (APSB22-01: CVE-2021-44713)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

4.3CVSS5.6AI score0.0275EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•4 views

Adobe Acrobat and Reader Out of Buffer Read (APSB22-01: CVE-2021-45067)

A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

4.3CVSS5.9AI score0.03875EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•5 views

Adobe Acrobat and Reader Use After Free (APSB22-01: CVE-2021-45063)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

4.3CVSS5.6AI score0.06223EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•1 views

Adobe Acrobat and Reader NULL Pointer Dereference (APSB22-01: CVE-2021-44740)

A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

4.3CVSS5.3AI score0.03629EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•3 views

Adobe Acrobat and Reader NULL Pointer Dereference (APSB22-01: CVE-2021-44741)

A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

4.3CVSS5.3AI score0.03629EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•6 views

Adobe Acrobat and Reader Out-of-bounds Write (APSB22-01: CVE-2021-44707)

An out of bounds write vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

9.3CVSS3.5AI score0.08366EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•3 views

Adobe Acrobat And Reader Improper Access Control (APSB22-01: CVE-2021-44702)

A vulnerability exists in Adobe. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

4.3CVSS6.1AI score0.02072EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•5 views

Adobe Acrobat and Reader Stack-based Buffer Overflow (APSB22-01: CVE-2021-44703)

A buffer overflow vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

9.3CVSS5.6AI score0.57304EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•5 views

Adobe Acrobat and Reader Use After Free (APSB22-01: CVE-2021-44704)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9.3CVSS5.6AI score0.10801EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•5 views

Adobe Acrobat and Reader Use After Free (APSB22-01: CVE-2021-44701)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.8CVSS5.6AI score0.20906EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•3 views

Adobe Acrobat and Reader Violation of Secure Design Principles (APSB22-01: CVE-2021-44714)

A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

4.3CVSS5.3AI score0.02474EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•4 views

Adobe Acrobat and Reader Heap-based Buffer Overflow (APSB22-01: CVE-2021-44708)

A buffer overflow vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

9.3CVSS5.6AI score0.39318EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•3 views

Adobe Acrobat and Reader Use After Free (APSB22-01: CVE-2021-44706)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9.3CVSS5.6AI score0.08656EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•8 views

Microsoft Windows Common Log File System Driver Elevation of Privilege (CVE-2022-21897)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS8.2AI score0.01059EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•5 views

Adobe Acrobat And Reader Improper Input Validation (APSB22-01: CVE-2021-44739)

A vulnerability exists in Adobe. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

4.3CVSS5.9AI score0.02072EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•6 views

Adobe Acrobat and Reader Use After Free (APSB22-01: CVE-2021-45064)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.8CVSS5.6AI score0.11546EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•5 views

Adobe Acrobat and Reader Improper Input Validation (APSB22-01: CVE-2021-44712)

A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

4.3CVSS6AI score0.02168EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•4 views

Adobe Acrobat And Reader Integer Overflow (APSB22-01: CVE-2021-44711)

An integer overflow vulnerability exists in Adobe. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9.3CVSS5.7AI score0.09979EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/11 12:0 a.m.•5 views

Adobe Acrobat and Reader Heap-based Buffer Overflow (APSB22-01: CVE-2021-44709)

A buffer overflow vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

9.3CVSS5.6AI score0.29951EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/09 12:0 a.m.•6 views

IBM Data Risk Manager Arbitrary File Download (CVE-2020-4430)

An arbitrary file download vulnerability exists in IBM Data Risk Manager. Successful exploitation of this vulnerability would allow a remote attacker to download arbitrary files from affected system...

4CVSS4.5AI score0.68544EPSS
Exploits6
Check Point Advisories
Check Point Advisories
•added 2022/01/04 12:0 a.m.•3 views

D-Link Denial Of Service (CVE-2020-25366)

A denial of service vulnerability exists in D-Link routers. Successful exploitation of this vulnerability would allow a remote attacker to create a denial of service condition on the affected system...

8.5CVSS6.4AI score0.03306EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2022/01/04 12:0 a.m.•2 views

Updating IPS Blade with the Latest Dynamic Protections

IPS dynamic updates are available to customers who have purchased the IPS subscription service. Customers with valid subscription license can choose the attacks to defend against, read detailed information about the attack, configure parameters for each attack defense, including logging options,...

1.5AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2022/01/04 12:0 a.m.•13 views

Microsoft Exchange Server Cross Site Scripting (CVE-2021-41349)

A cross site scripting vulnerability exists in Microsoft Exchange Server. Successful exploitation of this vulnerability would allow remote attackers to inject an arbitrary web script into the affected system...

4.3CVSS6.3AI score0.93877EPSS
Exploits3
Check Point Advisories
Check Point Advisories
•added 2022/01/03 12:0 a.m.•14 views

Apache Log4j Remote Code Execution (CVE-2021-44832)

A remote code execution vulnerability exists in Apache Log4j. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

8.5CVSS5.4AI score0.97906EPSS
Exploits9
Check Point Advisories
Check Point Advisories
•added 2022/01/02 12:0 a.m.•17 views

Apache Log4j Remote Code Execution (CVE-2017-5645)

A remote code execution vulnerability exists in Apache Log4j. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS5.4AI score0.8904EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2021/12/30 12:0 a.m.•4 views

Aviatrix Controller Directory Traversal (CVE-2021-40870)

A directory traversal vulnerability exists in Aviatrix Controller. Successful exploitation of this vulnerability could allow an attacker to access arbitrary files on the affected system...

7.5CVSS6.3AI score0.92382EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2021/12/30 12:0 a.m.•5 views

GitLab Community and Enterprise Cross-Site Scripting (CVE-2021-22241)

A stored cross-site scripting vulnerability exists in the Community edition and Enterprise edition of GitLab. The vulnerability is due to improper input validation of the default branch name...

3.5CVSS2.2AI score0.00991EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2021/12/30 12:0 a.m.•11 views

Commvault CommCell Authentication Bypass (CVE-2021-34996)

An authentication bypass exists in Commvault CommCell. The vulnerability is due to use of hardcoded credentials to access CVSearchService endpoint...

9CVSS3AI score0.82258EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2021/12/30 12:0 a.m.•24 views

ElFinder File Manager Command Injection (CVE-2021-32682)

A command injection vulnerability exists in ElFinder. The vulnerability is due to insufficient validation of the file name when creating an archive...

7.5CVSS2.6AI score0.69934EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2021/12/30 12:0 a.m.•3 views

Schneider Electric Struxureware Data Center Expert Command Injection (CVE-2021-22795)

A command-injection vulnerability exists in Schneider Electric Struxureware Data Center Expert. The vulnerability is due to improper validation of user-supplied input...

7.5CVSS2.8AI score0.03083EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2021/12/30 12:0 a.m.•5 views

RaspAP Command Injection (CVE-2021-33357)

A command injection vulnerability exists in RaspAP. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

7.5CVSS5.7AI score0.17905EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/12/30 12:0 a.m.•5 views

Zoho ManageEngine ADManager Plus Arbitrary File Upload (CVE-2021-37921)

An unrestricted file upload vulnerability exists in ManageEngine ADManager Plus. The vulnerability is due to lack of validation of uploaded files in ReportsAction class...

7.5CVSS2.3AI score0.10641EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2021/12/30 12:0 a.m.•15 views

WordPress WooCommerce Gutenberg Blocks Plugin SQL Injection (CVE-2021-32789)

An SQL injection vulnerability exists in WordPress WooCommerce Gutenberg Blocks Plugin. Successful exploitation of this vulnerability could result in the execution of arbitrary SQL statements on the affected system...

5CVSS3.8AI score0.17227EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2021/12/29 12:0 a.m.•7 views

Siemens SINEC NMS Directory Traversal (CVE-2021-33722)

A directory traversal vulnerability exists in Siemens SINEC NMS. The vulnerability is due to improper validation of user-supplied path while exporting firmware containers...

4CVSS3.5AI score0.00825EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2021/12/29 12:0 a.m.•7 views

Delta Electronics DIAEnergie SQL Injection (CVE-2021-38391)

An SQL injection exists in Delta Industrial Automation DIAEnergie. The vulnerability is due to an input validation error when processing the type parameter in the AMHandler.ashx endpoint...

10CVSS4.2AI score0.03455EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2021/12/28 12:0 a.m.•2 views

Delta Electronics DIAEnergie SQL Injection (CVE-2021-32983)

An SQL injection exists in Delta Industrial Automation DIAEnergie. The vulnerability is due to input validation error when processing keyword parameter in HandlerCFG.ashx endpoint...

10CVSS4.7AI score0.03938EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2021/12/28 12:0 a.m.•3 views

Advantech R-SeeNet telnet_form.php Cross-Site Scripting (CVE-2021-21799)

A reflected cross-site scripting vulnerability exists in Advantech R-SeeNet. The vulnerability is due to improper input validation in telnetform.php...

4.3CVSS2AI score0.12293EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2021/12/28 12:0 a.m.•9 views

Zoho ManageEngine ADManager Plus Arbitrary File Upload (CVE-2021-20130)

An unrestricted file upload vulnerability exists in ManageEngine ADManager Plus. The vulnerability is due to lack of validation of uploaded files in PasswordExpiryAction class...

6.5CVSS2.6AI score0.3162EPSS
Exploits0
Total number of security vulnerabilities13538