Lucene search
K
Checkpoint AdvisoriesRecent

13538 matches found

Check Point Advisories
Check Point Advisories
•added 2020/02/17 12:0 a.m.•5 views

HPE Intelligent Management Center Denial of Service (CVE-2019-5355)

A denial-of-service vulnerability exists in the dbman component of HPE Intelligent Management Center. Successful exploitation of this vulnerability could result in a denial of service condition on the target server...

7.8CVSS2.5AI score0.53971EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/17 12:0 a.m.•9 views

Oracle E-Business Suite SQL Injection (CVE-2019-2633; CVE-2019-2638)

An SQL vulnerability exists in the Work In Process component of Oracle E-Business Suite. Successful exploitation of this vulnerability could result in the execution of arbitrary SQL statements with the privileges of the APPS database user...

6.5CVSS3.9AI score0.01381EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/17 12:0 a.m.•11 views

Advantech WebAccess SCADA Stack-based Buffer Overflow (CVE-2019-3975; CVE-2019-3951)

A stack-based buffer overflow vulnerability exists in the webvrpcs service of Advantech WebAccess. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS5.5AI score0.04568EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2020/02/16 12:0 a.m.•15 views

Oracle Weblogic Insecure Deserialization (CVE-2020-2551)

An insecure deserialization vulnerability exists in Oracle Weblogic. A remote unauthenticated attacker can exploit this vulnerability by sending crafted requests to a vulnerable server. Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code on the affected...

7.5CVSS5.1AI score0.93168EPSS
Exploits18
Check Point Advisories
Check Point Advisories
•added 2020/02/14 12:0 a.m.•2 views

Microsoft Remote Desktop Client Remote Code Execution (CVE-2020-0817)

A remote code execution vulnerability exists in the Windows Remote Desktop Client. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/13 12:0 a.m.•5 views

PostgreSQL Database Password Change Stack Buffer Overflow (CVE-2019-10164)

A stack buffer overflow exists in PostgreSQL Database. The vulnerability is due to a stack buffer overflow when setting a password. A remote, authenticated attacker could send a crafted request in order to trigger the vulnerability. Successful exploitation will result in arbitrary code execution...

9CVSS4.3AI score0.03711EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•5 views

Microsoft Win32k Elevation of Privilege (CVE-2020-0720)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS8.2AI score0.00962EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•2 views

Advantech WebAccess Buffer Overflow (CVE-2019-13556)

A stack-based buffer overflow vulnerability exists in Advantech WebAccess. The vulnerability is due to a lack of boundary checks while copying user-supplied data into a stack-based buffer within giffconv.exe. A remote, unauthenticated attacker could exploit this vulnerability by sending a...

6.5CVSS4.6AI score0.02123EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•4 views

Adobe Acrobat and Reader Use After Free (APSB20-05: CVE-2020-3751)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS9.2AI score0.04853EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•2 views

Adobe Acrobat and Reader Buffer Errors (APSB20-05: CVE-2020-3754)

A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

10CVSS8.6AI score0.04853EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•3 views

Microsoft Win32k Elevation of Privilege (CVE-2020-0726)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS8.2AI score0.00962EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•2 views

Microsoft Win32k Elevation of Privilege (CVE-2020-0723)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS8.2AI score0.00962EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•4 views

Adobe Acrobat and Reader Out-of-Bounds Read (APSB20-05: CVE-2020-3755)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

5CVSS7.9AI score0.02725EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•3 views

Adobe Acrobat and Reader Use After Free (APSB20-05: CVE-2020-3750)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS9.2AI score0.04853EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•3 views

Adobe Acrobat and Reader Use After Free (APSB20-05: CVE-2020-3748)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.8CVSS8.9AI score0.03553EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•3 views

Adobe Acrobat and Reader Use After Free (APSB20-05: CVE-2020-3743)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS9.2AI score0.04853EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•2 views

Adobe Acrobat and Reader Use After Free (APSB20-05: CVE-2020-3741)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

5CVSS7.7AI score0.02632EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•3 views

Microsoft Win32k Elevation of Privilege (CVE-2020-0722)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS8.2AI score0.00962EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•3 views

Microsoft Win32k Elevation of Privilege (CVE-2020-0725)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS8.2AI score0.00914EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•2 views

Microsoft Windows Graphics Component Elevation of Privilege (CVE-2020-0745)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS8.2AI score0.00914EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•3 views

Microsoft Windows Graphics Component Elevation of Privilege (CVE-2020-0715)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS8.2AI score0.00962EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•3 views

Microsoft Win32k Elevation of Privilege (CVE-2020-0721)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS8.2AI score0.00962EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•5 views

Microsoft Windows Common Log File System Driver Information Disclosure (CVE-2020-0658; CVE-2020-0657)

An information disclosure vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...

4.6CVSS6AI score0.01454EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•3 views

Adobe Acrobat and Reader Heap Overflow (APSB20-05: CVE-2020-3742)

A buffer overflow vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

10CVSS9.5AI score0.05798EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•5 views

Microsoft Win32k Elevation of Privilege (CVE-2020-0731)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS7.9AI score0.01055EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•2 views

Adobe Acrobat and Reader Out-of-Bounds Read (APSB20-05: CVE-2020-3747)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

5CVSS7.9AI score0.02725EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•3 views

Adobe Acrobat and Reader Buffer Errors (APSB20-05: CVE-2020-3752)

A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

10CVSS8.6AI score0.05238EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•4 views

Adobe Acrobat and Reader Use After Free (APSB20-05: CVE-2020-3746)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS9.2AI score0.04853EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•6 views

Jenkins Pipeline Groovy Remote Code Execution (CVE-2019-1003001)

A remote code execution vulnerability exists in Jenkins pipeline groovy. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.5CVSS5.3AI score0.86224EPSS
Exploits9
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•4 views

Adobe Acrobat and Reader Use After Free (APSB20-05: CVE-2020-3745)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS9.2AI score0.04853EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•4 views

Adobe Flash Player Type Confusion (APSB20-06: CVE-2020-3757)

A type confusion vulnerability exists in Adobe Flash Player. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9.3CVSS4.6AI score0.0978EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•4 views

Adobe Acrobat and Reader Use After Free (APSB20-05: CVE-2020-3749)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS9.2AI score0.04853EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•3 views

Microsoft Remote Desktop Client Remote Code Execution (CVE-2020-0734)

A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9.3CVSS8.5AI score0.15912EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•7 views

Microsoft Remote Desktop Client Remote Code Execution (CVE-2020-0681)

A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.6CVSS8.5AI score0.1022EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•7 views

Microsoft Exchange Server Elevation of Privilege (CVE-2020-0692)

An elevation of privilege vulnerability exists in Microsoft Microsoft Exchange. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.8CVSS6.1AI score0.03264EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/11 12:0 a.m.•2 views

Adobe Acrobat and Reader Out-of-Bounds Read (APSB20-05: CVE-2020-3744)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

5CVSS7.9AI score0.08906EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/05 12:0 a.m.•4 views

Redis Buffer Overflow (CVE-2019-10192; CVE-2019-10193)

A buffer overflow vulnerability exists in Redis. Successful exploitation of this vulnerability could result in the execution of arbitrary code on the affected system...

6.5CVSS4.8AI score0.26048EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/05 12:0 a.m.•2 views

Apple iTunes Memory Corruption (CVE-2019-8601)

A memory corruption vulnerability exists in Apple iTunes. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.8CVSS5.2AI score0.04068EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2020/02/03 12:0 a.m.•4 views

WordPress Code Snippets Plugin Cross Site Request Forgery (CVE-2020-8417)

A cross site request forgery vulnerability exists in WordPress Code Snippets plugin. Successful exploitation of this vulnerability can result in the execution of arbitrary code on the affected system...

6.8CVSS2.8AI score0.11905EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2020/02/02 12:0 a.m.•3 views

Foxit Reader Use After Free (CVE-2018-14304; CVE-2018-14300; CVE-2018-17682; CVE-2018-3924)

A use after free vulnerability exists in Foxit Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.8CVSS5.3AI score0.4414EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2020/02/02 12:0 a.m.•2 views

Oracle Weblogic Server Information Disclosure (CVE-2019-2647; CVE-2019-2648)

An information disclosure vulnerability exists in Oracle Weblogic Server. This vulnerability is due to insufficient validation of XML data. Successful exploitation of this vulnerability could lead to the disclosure of file contents on the target machine...

5CVSS1.6AI score0.02295EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/02 12:0 a.m.•4 views

Microsoft Windows DHCP Client Code Execution (CVE-2019-0547)

A remote code execution vulnerability exists in Microsoft DHCP Client. The vulnerability is due to improper processing of DHCP response messages, causing memory corruption. A remote attacker could exploit this vulnerability by sending maliciously crafted DHCP responses to a vulnerable target...

7.5CVSS8.8AI score0.71365EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/02 12:0 a.m.•5 views

Advantech WebAccess Buffer Overflow (CVE-2019-6550)

A stack-based buffer overflow vulnerability exists in Advantech WebAccess. Successful exploitation of this vulnerability will allow remote attackers to execute arbitrary code on the affected system...

7.5CVSS7.2AI score0.06092EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/02/02 12:0 a.m.•11 views

Foxit Reader Annotations Point Use After Free (CVE-2018-9958)

A use-after-free vulnerability exists in Foxit Reader. This vulnerability is due to improper handling of an annotation object. Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code on the affected system...

6.8CVSS3.9AI score0.63313EPSS
Exploits13
Check Point Advisories
Check Point Advisories
•added 2020/02/02 12:0 a.m.•15 views

Linear eMerge Command Injection (CVE-2019-7256)

A command injection vulnerability exists in Linear eMerge E3-series devices. Successful exploitation of this vulnerability would allow remote attackers to execute arbitrary commands on the affected system...

10CVSS7.8AI score0.97136EPSS
Exploits16
Check Point Advisories
Check Point Advisories
•added 2020/01/29 12:0 a.m.•7 views

MediaWiki Reflected Cross-Site Scripting (CVE-2017-8809)

A reflected cross-site scripting vulnerability exists in MediaWiki. The vulnerability is due to insufficient input validation on user input in the api.php component. A remote user can exploit this vulnerability by enticing a user to click on a malicious link...

7.5CVSS2.3AI score0.07714EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2020/01/27 12:0 a.m.•3 views

Zoho ManageEngine Applications Manager SQL Injection (CVE-2019-11469)

A SQL injection vulnerability exists in Zoho ManageEngine Applications Manager. The vulnerability is due to improper validation of user-supplied input in FaultTemplateOptions.jsp. Successful exploitation could result in arbitrary SQL code execution...

10CVSS3.9AI score0.18362EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2020/01/26 12:0 a.m.•4 views

Pandora FMS Command Injection (CVE-2019-20224)

A command injection vulnerability exists in Pandora FMS. Successful exploitation of this vulnerability would allow remote attackers to execute arbitrary commands on the affected system...

9CVSS7.5AI score0.50615EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2020/01/23 12:0 a.m.•6 views

Microsoft Windows NTLM Authentication Bypass (CVE-2019-1040)

An authentication bypass vulnerability exists in the NTLM component of Microsoft Windows. The vulnerability is due to improper validation of the MIC in an AUTHENTICATE message. Successful exploitation of this vulnerability would allow remote attackers to gain access to sensitive information and...

4.3CVSS7.2AI score0.48043EPSS
Exploits6
Check Point Advisories
Check Point Advisories
•added 2020/01/23 12:0 a.m.•3 views

Memcached lru mode Denial of Service (CVE-2019-11596)

A denial of service vulnerability exists in Memcached 'lru mode' and 'lru tempttl' commands. Successful exploitation of this vulnerability would allow a remote attacker to create a denial of service condition on the affected system...

5CVSS5AI score0.02958EPSS
Exploits1
Total number of security vulnerabilities13538