Lucene search
K
Checkpoint AdvisoriesRecent

13538 matches found

Check Point Advisories
Check Point Advisories
•added 2020/05/26 12:0 a.m.•0 views

HTTP Suspicious Linux Usr Paths

Linux sub-directory usr contains user binaries, their documentation, libraries, header files, and its supporting libraries. A remote attacker may create a malicious HTTP request to obtain sensitive information...

1AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/26 12:0 a.m.•1 views

WordPress Ajax Load More Plugin SQL Injection

An SQL injection vulnerability exists in the WordPress Ajax Load More Plugin. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

5.3AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/24 12:0 a.m.•0 views

WordPress Compromised Installed Servers Remote Code Execution

A PHP backdoor vulnerability exists in compromised installation of WordPress sites. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.7AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/24 12:0 a.m.•4 views

WordPress JobCareer Plugin Authentication Bypass (CVE-2018-19488)

An authentication bypass vulnerability exists in JobCareer plugin. A remote authenticated attacker may exploit this vulnerability to reset the password of a user's account...

7.5CVSS3.8AI score0.04129EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2020/05/24 12:0 a.m.•3 views

WordPress JobCareer Plugin Information Disclosure (CVE-2018-19487)

An Information Disclosure vulnerability exists in JobCareer plugin. A remote authenticated attacker may exploit this vulnerability to enumerate information about users...

5CVSS3.4AI score0.04852EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2020/05/24 12:0 a.m.•14 views

Sonatype Nexus Repository Manager Remote Code Execution (CVE-2020-10199)

A remote code execution vulnerability exists in Sonatype Nexus Repository Manager. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9CVSS5.1AI score0.99064EPSS
Exploits10
Check Point Advisories
Check Point Advisories
•added 2020/05/24 12:0 a.m.•19 views

Apache Shiro Remote Code Execution (CVE-2016-4437)

A remote code execution vulnerability exists in Apache Shiro. Successful exploitation could allow the attacker to execute arbitrary code on the affected system...

6.8CVSS5.4AI score0.93143EPSS
Exploits9
Check Point Advisories
Check Point Advisories
•added 2020/05/22 12:0 a.m.•10 views

Gracemedia Media Player Local File Inclusion (CVE-2019-9618)

A vulnerability exists in gracemedia media player project gracemedia media player. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

7.5CVSS5.7AI score0.40771EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2020/05/22 12:0 a.m.•3 views

Microsoft Windows Information Disclosure(CVE-2019-1227)

An information disclosure vulnerability exists in microsoft windows. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...

2.1CVSS6.6AI score0.01661EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/22 12:0 a.m.•2 views

Microsoft Office Information Disclosure(CVE-2019-1153)

An information disclosure vulnerability exists in microsoft office. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...

2.1CVSS6.6AI score0.02832EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/22 12:0 a.m.•6 views

Microsoft Asp.net Core Privilege Escalation (CVE-2019-1302)

An elevation of privilege vulnerability exists in microsoft asp.net core. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.8CVSS5.9AI score0.04526EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/22 12:0 a.m.•8 views

Microsoft Windows Information Disclosure(CVE-2019-1039)

An information disclosure vulnerability exists in microsoft windows . Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...

2.1CVSS6.1AI score0.01352EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/22 12:0 a.m.•5 views

Microsoft Windows Information Disclosure(CVE-2019-1334)

An information disclosure vulnerability exists in microsoft windows . Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...

2.1CVSS6.4AI score0.02102EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/21 12:0 a.m.•3 views

TP-Link Archer A7/C7 Remote Code Execution (CVE-2020-10884; CVE-2020-10882; CVE-2020-10883)

A remote code execution vulnerability exists in TP-Link Archer A7/C7. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

8.3CVSS8.7AI score0.44437EPSS
Exploits6
Check Point Advisories
Check Point Advisories
•added 2020/05/21 12:0 a.m.•0 views

Microsoft Windows Contact Files HTML Injection

A html injection vulnerability exists in Microsoft. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...

3.9AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/21 12:0 a.m.•3 views

D-Link DIR-859 Remote Code Execution (CVE-2019-20215)

A remote code execution vulnerability exists in D-Link DIR-859. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

10CVSS6.1AI score0.75105EPSS
Exploits6
Check Point Advisories
Check Point Advisories
•added 2020/05/21 12:0 a.m.•3 views

Alcatel OpenTouch Command Injection (CVE-2020-11794)

A command injection vulnerability exists in Alcatel OpenTouch. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary commands via shell...

6.2AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/21 12:0 a.m.•3 views

Microsoft Internet Explorer Memory Corruption(CVE-2019-1194)

A memory corruption vulnerability exists in microsoft internet explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.6CVSS8.9AI score0.03381EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/21 12:0 a.m.•4 views

Microsoft SQL Server Management Studio Information Disclosure (CVE-2019-1313)

An information disclosure vulnerability exists in microsoft sql server management studio. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...

4CVSS5.6AI score0.0496EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/21 12:0 a.m.•3 views

Microsoft Windows Information Disclosure(CVE-2019-1094)

An information disclosure vulnerability exists in microsoft windows . Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...

4.3CVSS6.6AI score0.06728EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/21 12:0 a.m.•8 views

Cisco IP Phone Denial of Service (CVE-2020-3161)

A denial of service vulnerability exists in Cisco IP Phone. A remote unauthenticated attacker can exploit this vulnerability to cause a denial of service condition on an affected system...

10CVSS3.8AI score0.83734EPSS
Exploits4
Check Point Advisories
Check Point Advisories
•added 2020/05/21 12:0 a.m.•0 views

Suspicious Defacement Traffic

Website defacement is an attack to change the visual appearance and content of a website. An attacker may use this attack to vandalize a targeted website...

2.6AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/21 12:0 a.m.•4 views

Zen Load Balancer Remote Code Execution (CVE-2019-7301)

A remote code execution vulnerability exists in Zen Load Balancer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9CVSS7.5AI score0.03415EPSS
Exploits4
Check Point Advisories
Check Point Advisories
•added 2020/05/18 12:0 a.m.•5 views

Pandora FMS Remote Code Execution (CVE-2020-5844)

A remote code execution vulnerability exists in Pandora FMS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.5CVSS5.6AI score0.30254EPSS
Exploits6
Check Point Advisories
Check Point Advisories
•added 2020/05/18 12:0 a.m.•10 views

vBulletin nodeId SQL Injection (CVE-2020-12720)

An SQL injection vulnerability exists in vBulletin. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS5.3AI score0.88948EPSS
Exploits13
Check Point Advisories
Check Point Advisories
•added 2020/05/18 12:0 a.m.•2 views

Adobe Acrobat and Reader Out Of Bounds Read (APSB20-24: CVE-2020-9594)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.8CVSS5.6AI score0.03504EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/17 12:0 a.m.•6 views

NGINX NJS Heap-Based Buffer Overflow (CVE-2019-11838)

A buffer overflow vulnerability exists in NGINX NJS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

7.5CVSS9.6AI score0.01598EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2020/05/17 12:0 a.m.•8 views

NGINX NJS Denial of Service (CVE-2019-11837)

A denial of service DoS vulnerability exists in NGINX NJS. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

5CVSS7.1AI score0.01379EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2020/05/17 12:0 a.m.•7 views

NGINX NJS Heap-Based Buffer Overflow (CVE-2019-11839)

A buffer overflow vulnerability exists in NGINX NJS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

7.5CVSS9.6AI score0.01643EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2020/05/17 12:0 a.m.•8 views

TP-LINK Cloud Cameras Command Injection (CVE-2020-12111; CVE-2020-12109)

A command injection vulnerability exists in TP-LINK cloud cameras. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9CVSS5.7AI score0.74338EPSS
Exploits10
Check Point Advisories
Check Point Advisories
•added 2020/05/17 12:0 a.m.•6 views

NGINX NJS Buffer Overflow (CVE-2019-13067)

A buffer overflow vulnerability exists in NGINX NJS. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

7.5CVSS9.1AI score0.01597EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2020/05/14 12:0 a.m.•0 views

HTTP Suspicious Linux Tilde Paths

Linux tilde is a directory that represent the home directory of any currently active user. A remote attacker may create a malicious HTTP request to obtain sensitive information...

0.6AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/14 12:0 a.m.•3 views

HTTP Suspicious Linux Etc Paths (CVE-2020-13448)

Linux sub-directory etc is a folder which contain all your system configuration file. A remote attacker may create a malicious HTTP request to obtain sensitive information...

9CVSS0.9AI score0.17772EPSS
Exploits7
Check Point Advisories
Check Point Advisories
•added 2020/05/14 12:0 a.m.•1 views

HTTP Host Header Injection

A host header injection is inserting both the carriage return and linefeed characters into user input to trick the server. Successful exploitation could allow attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks...

3.5AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/14 12:0 a.m.•4 views

SonicWall SMA100 Remote Code Execution (CVE-2019-7486)

A remote code execution vulnerability exists in SonicWall SRA and SonicWall SMA systems. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.5CVSS5.8AI score0.01582EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/14 12:0 a.m.•0 views

Apple MobileMail and Maild Remote Code Execution

A remote code execution vulnerability exists in Apple MobileMail and Maild. Successful exploitation could result in execution of arbitrary code on the affected system...

3.8AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/14 12:0 a.m.•6 views

SonicWall SMA100 and SRA Buffer Overflow (CVE-2019-7482)

A buffer overflow vulnerability exists in SonicWall SMA100 and SonicWall SRA systems. Successful exploitation could result in arbitrary code execution in the context of the affected application...

7.5CVSS4.5AI score0.08817EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/14 12:0 a.m.•2 views

SonicWall SMA100 Directory Traversal (CVE-2019-7483)

A directory traversal vulnerability exists in SonicWall SMA100 system. Successful exploitation of this vulnerability could lead to disclosure of file contents accessible by the unauthenticated user...

5CVSS3.3AI score0.03977EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/13 12:0 a.m.•2 views

Adobe Acrobat and Reader Use-after-free (APSB20-24: CVE-2020-9606)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

4.6CVSS5.6AI score0.01231EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/13 12:0 a.m.•4 views

Adobe Acrobat and Reader Buffer overflow (APSB20-24: CVE-2020-9605)

A buffer overflow vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

6.8CVSS5.6AI score0.04104EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/13 12:0 a.m.•4 views

Adobe Acrobat and Reader Buffer overflow (APSB20-24: CVE-2020-9604)

A buffer overflow vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

6.8CVSS5.6AI score0.04104EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/13 12:0 a.m.•2 views

Adobe Acrobat and Reader Out-of-bound read (APSB20-24: CVE-2020-9609)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

4.3CVSS3.6AI score0.02717EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/13 12:0 a.m.•2 views

Adobe Acrobat and Reader Out-Of-Bounds Read (APSB20-24: CVE-2020-9602)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

4.3CVSS3.6AI score0.02812EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/13 12:0 a.m.•1 views

Adobe Acrobat and Reader Digital Signature Bypass (APSB20-24: CVE-2020-9596)

A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

6.8CVSS5.7AI score0.02328EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/13 12:0 a.m.•3 views

Adobe Acrobat and Reader Out-Of-Bounds Read (APSB20-24: CVE-2020-9599)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

5CVSS3.6AI score0.03474EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/13 12:0 a.m.•3 views

Adobe Acrobat and Reader Out-of-Bounds Read (APSB20-24: CVE-2020-9603)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

4.3CVSS3.6AI score0.02812EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/13 12:0 a.m.•3 views

Adobe Acrobat and Reader Memory corruption (APSB20-24: CVE-2020-9593)

A memory corruption vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

4.3CVSS5.7AI score0.02812EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/13 12:0 a.m.•2 views

Adobe Acrobat and Reader Memory corruption (APSB20-24: CVE-2020-9598)

A memory corruption vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

4.3CVSS5.7AI score0.02812EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/13 12:0 a.m.•3 views

Adobe Acrobat and Reader Null Pointer (APSB20-24: CVE-2020-9610)

A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

4.3CVSS5.3AI score0.02029EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/05/13 12:0 a.m.•2 views

Adobe Acrobat and Reader Out-Of-Bounds Read (APSB20-24: CVE-2020-9600)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

5CVSS3.6AI score0.03474EPSS
Exploits0
Total number of security vulnerabilities13538