Lucene search
K
Checkpoint AdvisoriesRecent

13538 matches found

Check Point Advisories
Check Point Advisories
•added 2020/11/16 12:0 a.m.•5 views

Joomla Remote Code Execution (CVE-2020-11890)

A remote code execution vulnerability exists in Joomla. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

5CVSS5.7AI score0.02761EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2020/11/16 12:0 a.m.•1 views

NAPC Xinet Elegant 6 Asset Library SQL injection (CVE-2019-19245)

An SQL injection vulnerability exists in NAPC Xinet Elegant 6 Asset Library. Successful exploitation of this vulnerability could result in the execution of arbitrary SQL statements on the affected system...

7.5CVSS4AI score0.07941EPSS
Exploits3
Check Point Advisories
Check Point Advisories
•added 2020/11/16 12:0 a.m.•8 views

CAYIN xPost Remote Code Execution (CVE-2020-7356)

A remote code execution vulnerability exists in CAYIN xPost. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS5.5AI score0.14014EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2020/11/16 12:0 a.m.•4 views

Grandstream GXP1600 Remote Code Execution (CVE-2020-5738)

A remote code execution vulnerability exists in Grandstream GXP1600. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9CVSS5.8AI score0.05424EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2020/11/16 12:0 a.m.•4 views

WordPress WooCommerce Plugin Authentication Bypass (CVE-2020-11497)

An authentication bypass vulnerability exists in WordPress WooCommerce Plugin. Successful exploitation of this vulnerability could allow a remote attacker to gain unauthorized access to the affected system...

5CVSS5.4AI score0.01152EPSS
Exploits4
Check Point Advisories
Check Point Advisories
•added 2020/11/16 12:0 a.m.•2 views

Octeth Oempro SQL injection (CVE-2019-19740)

An SQL injection vulnerability exists in Octeth Oempro. Successful exploitation of this vulnerability could result in the execution of arbitrary SQL statements on the affected system...

7.5CVSS3.2AI score0.05762EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2020/11/16 12:0 a.m.•1 views

JBoss JexBoss Security Scanner

JexBoss is a vulnerability scanning product. Remote attackers can use JexBoss to detect vulnerabilities on a target server...

3.2AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/16 12:0 a.m.•3 views

Microsoft Windows Network File System Denial of Service (CVE-2020-17047)

A denial of service vulnerability has been reported in Windows Network File System. The vulnerability is due to improper handling of crafted RPC packets. A remote attacker can exploit this vulnerability by sending malicious RPC calls to a targe server...

7.8CVSS3.2AI score0.25285EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/16 12:0 a.m.•6 views

Sonatype Nexus Repository Remote Code Execution (CVE-2020-10204)

A remote code execution vulnerability exists in Sonatype Nexus Repository. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9CVSS5.3AI score0.24318EPSS
Exploits3
Check Point Advisories
Check Point Advisories
•added 2020/11/16 12:0 a.m.•10 views

Joomla GMapFP Component Arbitrary File Upload (CVE-2020-23972)

An arbitrary file upload vulnerability exists in Joomla GMapFP Component. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

5CVSS4.8AI score0.31444EPSS
Exploits3
Check Point Advisories
Check Point Advisories
•added 2020/11/16 12:0 a.m.•47 views

jQuery Cross Site Scripting (CVE-2020-11022; CVE-2020-11023)

A cross-site scripting vulnerability exists in jQuery. Successful exploitation of this vulnerability could result in execution of arbitrary scripts on the affected system...

4.3CVSS2.8AI score0.99019EPSS
Exploits11
Check Point Advisories
Check Point Advisories
•added 2020/11/15 12:0 a.m.•5 views

Oracle Fusion Middleware Cross-Site Scripting (CVE-2010-3581)

A vulnerability exists in Oracle Fusion Middleware. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

3.5CVSS6AI score0.01763EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2020/11/15 12:0 a.m.•3 views

HP Insight Diagnostics Online Edition Cross-Site Scripting (CVE-2010-4111)

A script injection vulnerability exists in HP Insight Diagnostics. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...

4.3CVSS6.8AI score0.01805EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2020/11/15 12:0 a.m.•3 views

SmartISoft phpBazar Remote Code Execution (CVE-2010-2315)

A remote code execution vulnerability exists in SmartISoft phpbazar. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS5.7AI score0.05824EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2020/11/11 12:0 a.m.•17 views

Oracle Solaris Buffer Overflow (CVE-2020-14871)

A buffer overflow vulnerability exists in Oracle Solaris. Successful exploitation of this vulnerability could result in a denial of service or execution of arbitrary code into the affected system...

10CVSS4.9AI score0.80291EPSS
Exploits13
Check Point Advisories
Check Point Advisories
•added 2020/11/11 12:0 a.m.•1 views

NAT Slipstream Bypass Attempt

NAT Slipstreaming allows an attacker to remotely access any TCP/UDP services bound to a victim machine, bypassing the victim's NAT/firewall arbitrary firewall pinhole control. A remote attacker can exploit this vulnerability by enticing a user to visit a specially crafted web page...

4.9AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/11 12:0 a.m.•3 views

Rasilient PixelStor Remote Code Execution (CVE-2020-6756)

A remote code execution vulnerability exists in Rasilient PixelStor. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS5.5AI score0.10559EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2020/11/11 12:0 a.m.•3 views

Red Lion N-Tron Cross Site Scripting (CVE-2020-16206)

A cross-site scripting vulnerability exists in Red Lion N-Tron. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...

3.5CVSS4.9AI score0.03233EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2020/11/11 12:0 a.m.•4 views

Netflix Titus Remote Code Execution (CVE-2020-9297)

A remote code execution vulnerability exists in Netflix Titus. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system that will damage users system...

7.5CVSS7.2AI score0.01663EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/11 12:0 a.m.•5 views

Szuray Video Encoder Firmware Command Injection (CVE-2020-24217)

A command injection vulnerability exists in Szuray Video Encoder Firmware. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

7.5CVSS6AI score0.40302EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•2 views

Adobe Acrobat and Reader Memory Corruption (APSB20-67: CVE-2020-24427)

A memory corruption vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

4.3CVSS5.8AI score0.02418EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•4 views

Microsoft Windows Win32k Elevation of Privilege (CVE-2020-17057)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS5.8AI score0.01867EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•2 views

Adobe Acrobat and Reader Use After Free (APSB20-67: CVE-2020-24430)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.8CVSS7.7AI score0.17933EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•3 views

Microsoft Win32k Elevation of Privilege (CVE-2020-17038)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS8.7AI score0.0098EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•3 views

Microsoft SharePoint Remote Code Execution (CVE-2020-17061)

A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.5CVSS8.8AI score0.03942EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•2 views

Adobe Acrobat and Reader Privilege Escalation (APSB20-67: CVE-2020-24433)

A privilege escalation vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...

9.3CVSS7.5AI score0.1524EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•2 views

Adobe Acrobat and Reader Buffer Overflow (APSB20-67: CVE-2020-24435)

A buffer overflow vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

6.8CVSS8AI score0.51275EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•2 views

Microsoft Win32k Elevation of Privilege (CVE-2020-17010)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS6AI score0.01521EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•3 views

Adobe Acrobat and Reader Improper Authorization (APSB20-67: CVE-2020-24432)

A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

6.8CVSS7.2AI score0.10648EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•3 views

Microsoft Windows Network File System Remote Code Execution (CVE-2020-17056)

A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

2.1CVSS5.4AI score0.01286EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•2 views

Adobe Acrobat and Reader Out-of-bounds Write (APSB20-67: CVE-2020-24436)

An out of bounds write vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

6.8CVSS7AI score0.16348EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•1 views

Microsoft Browser Scripting Engine Memory Corruption (CVE-2020-17052)

A memory corruption vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.8CVSS8.2AI score0.02455EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•3 views

Adobe Acrobat and Reader Use After Free (APSB20-67: CVE-2020-24437)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.8CVSS7.7AI score0.45125EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•3 views

Adobe Acrobat and Reader Out-Of-Bounds Read (APSB20-67: CVE-2020-24426)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

4.3CVSS5.3AI score0.03023EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•6 views

Microsoft Internet Explorer Memory Corruption (CVE-2020-17053)

A memory corruption vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.6CVSS5.3AI score0.02936EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•4 views

Microsoft Windows Common Log File System Driver Elevation of Privilege (CVE-2020-17088)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

4.6CVSS8.7AI score0.00864EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•9 views

Adobe Acrobat and Reader Out-of-bounds Read (APSB20-67: CVE-2020-24434)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

4.3CVSS5.3AI score0.03023EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•4 views

Adobe Acrobat and Reader Use After Free (APSB20-67: CVE-2020-24438)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

4.3CVSS6.5AI score0.03845EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•5 views

Microsoft DirectX Elevation of Privilege (CVE-2020-16998)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

4.6CVSS6.1AI score0.00837EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/10 12:0 a.m.•5 views

Microsoft Windows Network File System Remote Code Execution (CVE-2020-17051)

A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS5.4AI score0.09857EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/05 12:0 a.m.•5 views

Cisco Unified IP Conference Station 7937G Denial of Service (CVE-2020-16139)

A denial-of-service vulnerability exists in Cisco Unified IP Conference Station 7937G. Successful exploitation of this vulnerability could cause a denial-of-service condition...

7.8CVSS2.7AI score0.7977EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2020/11/05 12:0 a.m.•9 views

Atlassian Jira Server Information Disclosure (CVE-2020-14181)

An information disclosure vulnerability exists in Atlassian Jira. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...

5CVSS3.2AI score0.99603EPSS
Exploits8
Check Point Advisories
Check Point Advisories
•added 2020/11/05 12:0 a.m.•3 views

Cisco Unified IP Conference Station Privilege Escalation (CVE-2020-16137)

A Privilege Escalation vulnerability exists in Cisco Unified IP Conference Station. Successful exploitation of this vulnerability could allow a remote attacker to create new users with elevated privileges and by that damage the affected system...

6.8CVSS5.5AI score0.19379EPSS
Exploits4
Check Point Advisories
Check Point Advisories
•added 2020/11/05 12:0 a.m.•13 views

Apache Spark Remote Code Execution (CVE-2020-9480)

A remote code execution vulnerability exists in Apache Spark. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9.3CVSS5.6AI score0.29157EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/05 12:0 a.m.•15 views

Drupal Core Form Rendering Remote Code Execution (CVE-2018-7600)

A code execution vulnerability exists in Drupal Core. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS5.4AI score0.99993EPSS
Exploits46
Check Point Advisories
Check Point Advisories
•added 2020/11/04 12:0 a.m.•1 views

Foxit Studio Photo Remote Code Execution (CVE-2020-8880)

A remote code execution vulnerability exists in Foxit Studio Photo. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.8CVSS5.4AI score0.11057EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/11/04 12:0 a.m.•3 views

Microsoft Windows Kernel Local Elevation of Privilege (CVE-2020-17087)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS5.7AI score0.05387EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2020/11/04 12:0 a.m.•4 views

SourceCodester Online Bus Booking System SQL Injection (CVE-2020-25273)

An SQL injection vulnerability exists in SourceCodester Online Bus Booking System. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS5.2AI score0.01791EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2020/11/04 12:0 a.m.•11 views

Winlogon Privilege Escalation (CVE-2020-1472)

A privilege escalation is the act of exploiting a bug, design flaw or configuration oversight in an operating system or software application to gain elevated access to resources that are normally protected. Successful exploitation of this vulnerability could allow an attacker to run arbitrary cod...

9.3CVSS4.9AI score0.99512EPSS
Exploits75
Check Point Advisories
Check Point Advisories
•added 2020/11/04 12:0 a.m.•5 views

D-Link DAP-1360U Command Injection (CVE-2020-26582)

A command injection vulnerability exists in D-Link DAP-1360U. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

9CVSS5.6AI score0.04791EPSS
Exploits1
Total number of security vulnerabilities13538