Firewalls Plugin

嚴重性

主題

Nessus 的 Firewalls 系列

ID	名稱	嚴重性
159541	Sophos XG Firewall <= 18.5.3 RCE	critical
158390	Fortinet FortiOS 7.0.x < 7.0.2 路徑遊走 (FG-IR-21-181)	high
156783	Fortinet FortiOS 權限提升 (FG-IR-20-131)	high
156754	Fortinet FortiOS CSRF (FG-IR-20-158)	high
156752	Fortinet FortiOS 整數溢位 (FG-IR-21-049)	critical
156569	Fortinet FortiOS 緩衝區溢位 (FG-IR-21-173)	medium
156550	Fortinet FortiOS 堆積型緩衝區溢位 (FG-IR-21-115)	high
152514	Fortinet FortiOS <= 6.2.9 / 6.4.x <= 6.4.6 / 7.0.0 Buffer Underwrite (FG-IR-21-046)	high
150981	SonicWall SonicOS 緩衝區溢位 (SNWLID-2021-0006)	high
150156	Fortinet FortiGate <= 5.6.13 / 6.0.x < 6.0.13 / 6.2.x < 6.2.8 / 6.4.x < 6.4.5 XSS (FG-IR-20-199)	medium
148336	Trend Micro InterScan Web Security Virtual Appliance (IWSVA) DecryptPasswd 堆疊型緩衝區溢位	critical
148111	Squid 2.x < 4.14 / 5.x < 5.0.5 (SQUID-2020: 11)	high
147661	Fortinet FortiOS <= 6.2.5 / 6.4 <= 6.4.2 流量繞過 (FG-IR-20-172)	high
146433	pfSense < 2.4.5 多個弱點	critical
146430	pfSense < 2.4.4-p3 多個弱點	high
146206	pfSense 2.4.x < 2.4.5-p1 多個弱點	high
146059	pfSense 2.4.x < 2.4.4-p1 多個弱點 (SA-18_09)	high
144948	Fortinet FortiOS < 6.0.11 / 6.2 < 6.2.5 / 6.4 < 6.4.2 資訊洩露 (FG-IR-20-103)	medium
144585	Trend Micro IWSVA 6.5 < 6.5 Build 1919 多個弱點	critical
143482	Fortinet FortiGate 6.2.2 < 6.2.6 / 6.4.x < 6.4.2 XSS (FG-IR-20-068)	medium
141122	Fortinet FortiOS < 6.0.10 / 6.2.x < 6.2.4 / 6.4.x < 6.4.1不當驗證 (FG-IR-19-283)	critical
141121	Fortinet FortiOS < 5.6.13 / 6.0 < 6.0.11 緩衝區溢位 (FG-IR-20-083)	critical
139923	Squid 2.x < 4.13 / 5.x < 5.0.4 (SQUID-2020: 8 和 SQUID-2020: 10)	medium
139912	Squid 2.x < 4.12 / 5.x < 5.0.3 (SQUID-2020: 5、 SQUID-2020: 6 & SQUID-2020: 7)	high
139547	不當檢查憑證撤銷 (FG-IR-19-144)	high
139546	不當檢查憑證撤銷 (FG-IR-19-144)	high
139031	Trend Micro InterScan Web Security Virtual Appliance 偵測	info
139030	Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 多個弱點 (000253095)	critical
136175	Sophos XG Firewall - SQL 插入	critical
134891	Check Point Gaia 作業系統系統管理員密碼截斷 (sk156192)	high
134890	Check Point 本機權限提升	high
134563	Check Point Security Gateway 拒絕服務 (sk161812)	high
134228	Fortinet FortiOS 5.x >= 5.4.0 / 6.x < 6.0.9 / 6.2.x < 6.2.2 URL 重新導向弱點 (FG-IR-19-179)	medium
133358	Fortinet FortiOS < 6.2.3 多個弱點 (FG-IR-19-217)	high
132317	Fortinet FortiOS < 5.6.10 / 6.0 < 6.0.7 / 6.2.x < 6.2.1 易遭受攻擊的加密 (FG-IR-19-007)	medium
131320	Fortinet FortiOS < 6.0.7 or 6.2.2 SSL VPN 入口網站不當輸入驗證 (FG-IR-19-236)	medium
131283	Fortinet FortiOS < 6.0.7 資訊洩露 MitM (FG-IR-18-100)	medium
131185	Fortinet FortiOS < 5.6.11 / 6.0.0 < 6.0.7 / 6.2.0 < 6.2.2 資訊洩露 (FG-IR-19-134)	medium
130209	FortiOS DRBG 熵不足 (FG-IR-19-186)	high
129782	Fortinet FortiGate 5.2.0 < 5.6.11 / 6.0.x < 6.0.5 XSS (FG-IR-19-034)	medium
128552	Fortinet FortiOS SSL VPN 目錄遊走弱點 (FG-IR-18-384) (直接檢查)	critical
128329	Symantec ProxySG 6.5 < 6.5.10.15 / 6.6 < 6.7.4.2 XSS 與資訊洩漏弱點 (SA1472)	medium
128303	Symantec ProxySG 6.5 / 6.6 / 6.7 < 6.7.4.141 OpenSSL 拒絕服務弱點 (SA1462)	high
128283	Check Point Gaia 作業系統開放介面及預設密碼 (sk145612)	critical
128278	Fortinet FortiOS 5.6.0 < 5.6.8 / 6.0.x < 6.0.5 在 SSL VPN 上有多個 pre-auth XSS 弱點 (FG-IR-18-383)	medium
128149	Check Point Gaia 作業系統系統管理員密碼截斷 (sk155172)	critical
127134	Fortinet FortiGate < 6.2.1 資訊洩露 (FG-IR-19-037)	medium
127107	SonicWall SonicOS 防火牆多個管理弱點 (URGENT/11)	critical
125889	Fortinet FortiOS < 6.0.5 SSL VPN web 入口網站主機標頭重新導向 (FG-IR-19-002)	medium
125888	Fortinet FortiOS 5.4.1 < 5.4.11 / 5.6.x < 5.6.9 / 6.0.x < 6.0.5 SSL VPN 安全性繞過 (FG-IR-18-389)	high

Nessus 的 Firewalls 系列

critical

high

high

high

critical

medium

high

high

high

medium

critical

high

high

critical

high

high

high

medium

critical

medium

critical

critical

medium

high

high

high

info

critical

critical

high

high

high

medium

high

medium

medium

medium

medium

high

medium

critical

medium

high

critical

medium

critical

medium

critical

medium

high