Lucene search
K
Checkpoint AdvisoriesRecent

13538 matches found

Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•2 views

Microsoft VBScript Remote Code Execution (CVE-2019-1485)

A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.6CVSS8.1AI score0.07709EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•3 views

Adobe Acrobat and Reader Out-of-Bounds Read (APSB19-55: CVE-2019-16457)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

5CVSS7.9AI score0.03252EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•3 views

Adobe Acrobat and Reader Out-of-Bounds Read (APSB19-55: CVE-2019-16465)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

5CVSS7.9AI score0.03252EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•3 views

Adobe Acrobat and Reader Use After Free (APSB19-55: CVE-2019-16452)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS9.2AI score0.06491EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•3 views

Adobe Acrobat and Reader Out-of-Bounds Read (APSB19-55: CVE-2019-16461)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

5CVSS7.9AI score0.03252EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•4 views

Adobe Acrobat and Reader Untrusted Pointer Dereference (APSB19-55: CVE-2019-16463)

A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

10CVSS8.6AI score0.05438EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•2 views

Adobe Acrobat and Reader Out-of-Bounds Read (APSB19-55: CVE-2019-16449)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

5CVSS7.9AI score0.03252EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•3 views

Adobe Acrobat and Reader Security bypass (APSB19-55: CVE-2019-16453)

A security bypass vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability would allow remote attackers to bypass security tests and protocols on the affected system...

10CVSS8.8AI score0.06009EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•3 views

Adobe Acrobat and Reader Untrusted Pointer Dereference (APSB19-55: CVE-2019-16455)

A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

10CVSS8.6AI score0.04782EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•3 views

Adobe Acrobat and Reader Out-of-Bounds Write (APSB19-55: CVE-2019-16450)

An out of bounds write vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

10CVSS8.5AI score0.04324EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•2 views

Adobe Acrobat and Reader Heap Overflow (APSB19-55: CVE-2019-16451)

A buffer overflow vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

10CVSS9.5AI score0.34676EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•2 views

Adobe Acrobat and Reader Buffer Errors (APSB19-55: CVE-2019-16462)

A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

10CVSS8.6AI score0.04782EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•3 views

Adobe Acrobat and Reader Out-of-Bounds Read (APSB19-55: CVE-2019-16458)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

5CVSS7.9AI score0.03252EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•3 views

Adobe Acrobat and Reader Out-of-Bounds Read (APSB19-55: CVE-2019-16456)

An out of bounds read vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...

5CVSS7.9AI score0.03252EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•3 views

Adobe Acrobat and Reader Binary Planting (APSB19-55: CVE-2019-16444)

A privilege escalation vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...

7.5CVSS9AI score0.03194EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•2 views

Adobe Acrobat and Reader Untrusted Pointer Dereference (APSB19-55: CVE-2019-16460)

A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

10CVSS8.6AI score0.04782EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•2 views

Adobe Acrobat and Reader Use After Free (APSB19-55: CVE-2019-16464)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS9.2AI score0.04782EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•5 views

Microsoft Win32k Information Disclosure (CVE-2019-1469)

An information disclosure vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...

2.1CVSS6AI score0.01634EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•2 views

Adobe Acrobat and Reader Use After Free (APSB19-55: CVE-2019-16459)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS9.2AI score0.04782EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•4 views

Adobe Acrobat and Reader Untrusted Pointer Dereference (APSB19-55: CVE-2019-16446)

A vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

10CVSS8.6AI score0.04782EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/10 12:0 a.m.•4 views

Adobe Acrobat and Reader Use After Free (APSB19-55: CVE-2019-16448)

A use-after-free vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS9.2AI score0.04782EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/12/08 12:0 a.m.•2 views

Broadcom CA Privileged Access Manager Remote Command Execution (CVE-2018-9021; CVE-2018-9022)

A remote code execution vulnerability exists in Broadcom CA Privileged Access Manager. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS6.7AI score0.20391EPSS
Exploits6
Check Point Advisories
Check Point Advisories
•added 2019/12/05 12:0 a.m.•4 views

FUDForum Remote Code Execution (CVE-2019-18873)

A remote code execution vulnerability exists in FUDForum. Successful exploitation could result in execution of arbitrary code on the affected system...

8.5CVSS3.9AI score0.08154EPSS
Exploits6
Check Point Advisories
Check Point Advisories
•added 2019/12/03 12:0 a.m.•12 views

Nostromo Web Server Directory Traversal (CVE-2019-16278)

A directory traversal vulnerability exists in Nostromo Web Server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS7.4AI score0.99057EPSS
Exploits24
Check Point Advisories
Check Point Advisories
•added 2019/11/28 12:0 a.m.•5 views

Microsoft Graphics Device Interface Information Disclosure (CVE-2019-0614)

An information disclosure vulnerability exists in the Graphics Device Interface GDI component of Microsoft Windows. The vulnerability is due to improper handling of objects in memory. Successful exploitation of this vulnerability would allow remote attackers to gain access to sensitive informatio...

4.3CVSS3.3AI score0.06553EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/11/28 12:0 a.m.•2 views

FreeBSD bootpd Stack Buffer Overflow (CVE-2018-17161)

A buffer overflow vulnerability exists in FreeBSD. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

7.5CVSS4.8AI score0.03519EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•2 views

Advantech WebAccess Node Spchapi Buffer Overflow Remote Code Execution

Stack based buffer overflow vulnerabilities have been reported in Advantech WebAccess Node. A remote, unauthenticated user can exploit these vulnerabilities by sending crafted requests to the target server. Successful exploitation could result in the execution of arbitrary code in the security...

3.4AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•2 views

Microsoft Office Information Disclosure (CVE-2019-0560)

An information disclosure vulnerability exists in a component of Microsoft Office. This vulnerability is due to improper handling of an object. Successful exploitation of this vulnerability would allow remote attackers to gain access to sensitive information...

4.3CVSS3.4AI score0.08729EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•2 views

Microsoft Graphics Device Interface Information Disclosure (CVE-2019-0602)

An information disclosure vulnerability exists in the Graphics Device Interface GDI component of Microsoft Windows. The vulnerability is due to improper handling of objects in memory. Successful exploitation of this vulnerability would allow remote attackers to gain access to sensitive informatio...

4.3CVSS7.3AI score0.07708EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•4 views

Cisco Prime Infrastructure and EPNM Directory Traversal (CVE-2019-1819)

A directory traversal vulnerability exists in Cisco Prime Infrastructure and Evolved Programmable Network Manager. The vulnerability is due to a lack of proper validation of a user-supplied path prior to using it in file operations. Successful exploitation results in the disclosure of file conten...

4CVSS2.8AI score0.13856EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•2 views

Microsoft Graphics Device Interface Information Disclosure (CVE-2019-0616)

An information disclosure vulnerability exists in Microsoft Graphics Device Interface. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...

4.3CVSS3.1AI score0.07708EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•3 views

Microsoft Windows DHCP Client DhcpExtractFullOptions Code Execution (CVE-2019-0697)

A remote code execution vulnerability exists in Microsoft DHCP Client. A remote attacker could exploit this vulnerability by sending maliciously crafted DHCP responses to a vulnerable Windows system. Successful exploitation of this vulnerability could allow the attacker to execute arbitrary code...

7.5CVSS9.4AI score0.29648EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•4 views

Evernote Directory Traversal (CVE-2019-10038)

A directory traversal vulnerability exists in Evernote. This vulnerability is due to improper validation of embedded links in notes. Successful exploitation could result in arbitrary program execution...

4.4CVSS5.2AI score0.01307EPSS
Exploits4
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•2 views

Microsoft Office Word Security Feature Bypass (CVE-2019-0540)

An information disclosure vulnerability exists in the Word component of Microsoft Office. This vulnerability is due to improper handling of fields. Successful exploitation could cause an information disclosure...

4.3CVSS0.9AI score0.12783EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•5 views

Microsoft Office Word Information Disclosure (CVE-2019-0561)

An information disclosure vulnerability exists in the Word component of Microsoft Office. This vulnerability is due to improper handling of fields. Successful exploitation of this vulnerability would allow remote attackers to gain access to sensitive information...

4.3CVSS3.2AI score0.08243EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•4 views

Cisco Webex Teams code Injection (CVE-2019-1636)

A remote code execution vulnerability exists in Cisco Webex Teams. The vulnerability is due to improper sanitation of user-supplied data which may be passed to the application as an option regarding the DLL loading path. Successful exploitation could result in code execution on the target machine...

9.3CVSS8.1AI score0.46891EPSS
Exploits3
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•6 views

PHP dns_get_record Out of Bounds Read (CVE-2019-9022)

An out of bounds read vulnerability exists in PHP dnsgetrecord. The vulnerability is due to improper handling of malformed DNS responses. Successful exploitation could lead to information disclosure...

5CVSS1AI score0.04188EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•6 views

Facebook Fizz Integer Overflow Denial of Service (CVE-2019-3560)

A denial-of-service vulnerability exists in Facebook Fizz. The vulnerability is due to an integer overflow in the handling of TLS 1.3 early data requests. A successful attack could create a denial of service condition to the Discovery service...

5CVSS3AI score0.0242EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•2 views

ClamAV OLE2 Out-of-Bounds Write (CVE-2019-1788)

An out-of-bounds write vulnerability exists in ClamAV. The vulnerability is due to improper handling of OLE2 files. Successful exploitation could result in denial-of-service conditions...

4.3CVSS1.9AI score0.01839EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•6 views

Responsive File Manager Directory Traversal (CVE-2018-20792)

A directory traversal vulnerability exists in the Responsive File Manager. This vulnerability is due to insufficient sanitization of directory traversal characters by the ajaxcalls.php. Successful exploitation of this vulnerability could allow an attacker to access arbitrary files on the affected...

5CVSS5AI score0.03463EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•2 views

libVNC File Transfer Extension Heap-based Buffer Overflow (CVE-2018-15127)

A heap-based buffer overflow vulnerability has been reported in libVNC. The vulnerability is due improper validation of the file transfer request by the File Transfer extension. Successful exploitation may result in remote code execution on the target server...

7.5CVSS4.7AI score0.15089EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•4 views

wolfSSL DoPreSharedKeys PSK Identity Buffer Overflow (CVE-2019-11873)

A buffer overflow vulnerability exists in wolfSSL embedded SSL/TLS library. The vulnerability is due to improper validation of PSK identity size in the requests. A remote attacker could exploit this vulnerability by sending maliciously crafted requests to a target server. Successful exploitation ...

7.5CVSS4.9AI score0.08777EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•4 views

OMRON CX-One CX-Protocol Type Confusion (CVE-2018-19027)

A type confusion vulnerability exists in OMRON CX-One CX-Protocol. This vulnerability occurs due to improper parsing of the project file. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.8CVSS6.8AI score0.01424EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•3 views

Malicious Activity Over DNS Tunneling

DNS Tunneling is used to pass non-DNS information using DNS messages, which are normally allowed by security devices. Malicious users or malware may use DNS tunnels to bypass inspection by the security gateway...

3.5AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•2 views

NTPsec ntpd Out of Bounds Read (CVE-2019-6444)

An out of bounds read vulnerability has been reported in NTPsec ntpd. The vulnerability is due to insufficient validation of the address of a field to be read in a NTP packet. Successful exploitation could lead to disclosure of sensitive information...

6.4CVSS1.3AI score0.45719EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•3 views

GnuTLS Certificate Verification Use after Free (CVE-2019-3829)

A use-after-free vulnerability exists in the GnuTLS library. The vulnerability is due to improper handling of signatures when processing X.509 certificates. A remote attacker can exploit this vulnerability in GnuTLS by sending a crafted X.509 certificate to a target application. Successful...

5CVSS3AI score0.58969EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2019/11/26 12:0 a.m.•4 views

Dovecot Submission-Login Service NULL Pointer Dereference Denial of Service (CVE-2019-11494)

A denial-of-service vulnerability exists in the Dovecot server. The vulnerability is due to a NULL pointer dereference in the submission-login service when authentication is aborted. Successful exploitation of this vulnerability could cause a partial denial of service of the affected system...

5CVSS3.3AI score0.02433EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/11/25 12:0 a.m.•8 views

Microsoft Remote Desktop Services Remote Code Execution (CVE-2019-1182)

A buffer overflow vulnerability exists in Microsoft Remote Desktop Services. A remote attacker could exploit this vulnerability by sending a specially crafted RDP packet. Successful exploitation of this vulnerability could lead to execution of arbitrary code on the target server...

10CVSS5.2AI score0.12934EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/11/25 12:0 a.m.•2 views

Advantech WebAccess Stack-based Buffer Overflow (CVE-2018-17910)

A stack-based buffer overflow vulnerability exists in Advantech WebAccess. Successful exploitation could lead to arbitrary code execution on the affected...

9.3CVSS4.1AI score0.05219EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2019/11/25 12:0 a.m.•5 views

Adobe InDesign Remote Code Execution (CVE-2019-7107)

A remote code execution vulnerability exists in Adobe InDesign. The vulnerability is due to insufficient validation of hyperlinks in InDesign documents. Successful exploitation could result in arbitrary code execution under the security context of the application...

10CVSS3.5AI score0.27809EPSS
Exploits0
Total number of security vulnerabilities13538