Nessus 的 Firewalls 系列

ID名稱嚴重性
165242Fortinet Fortigate - krb keytab 加密配置中的瑕疵 (FG-IR-22-158)
low
165179Fortinet Fortigate xss (FG-IR-21-222)
medium
164722FortiWeb: FortiWeb - OS command injection due to direct input interpolation in API controllers (FG-IR-21-180)
high
163711Fortinet Fortigate -- Inter-VDOM 資訊洩漏 (FG-IR-22-036)
medium
163262Fortinet FortiOS 緩衝區溢位 (FG-IR-21-206)
medium
163254Fortinet FortiManager 緩衝區溢位 (FG-IR-21-206)
high
163253Fortinet FortiOS 緩衝區溢位 (FG-IR-21-206)
high
163252Fortinet FortiOS 7.0.x <= 7.0.5 / 6.4.x <= 6.4.9 XSS (FG-IR-21-057)
medium
162782Fortinet FortiOS 整數溢位 (FG-IR-21-155)
medium
162313Fortinet FortiOS < 6.4 MitM (FG-IR-18-292)
medium
161892Fortinet FortiOS < 6.0.14 / 6.2 < 6.2.10 / 6.4 < 6.4.8 / 7.0 < 7.0.3 任意檔案下載 (FG-IR-21-201)
high
161660Fortinet FortiOS 憑證驗證弱點 (FG-IR-21-239)
medium
161659Fortinet FortiOS 存取控制弱點 (FG-IR-21-147)
medium
161606Fortinet FortiOS 敏感資訊洩露 (FG-IR-21-231)
medium
159541Sophos XG Firewall <= 18.5.3 RCE
critical
158390Fortinet FortiOS 7.0.x < 7.0.2 路徑遊走 (FG-IR-21-181)
high
156783Fortinet FortiOS 權限提升 (FG-IR-20-131)
high
156754Fortinet FortiOS CSRF (FG-IR-20-158)
high
156752Fortinet FortiOS 整數溢位 (FG-IR-21-049)
critical
156569Fortinet FortiOS 緩衝區溢位 (FG-IR-21-173)
medium
156550Fortinet FortiOS 堆積型緩衝區溢位 (FG-IR-21-115)
high
152514Fortinet FortiOS <= 6.2.9 / 6.4.x <= 6.4.6 / 7.0.0 緩衝區下界之下寫入 (FG-IR-21-046)
high
150981SonicWall SonicOS 緩衝區溢位 (SNWLID-2021-0006)
high
150156Fortinet FortiGate <= 5.6.13 / 6.0.x < 6.0.13 / 6.2.x < 6.2.8 / 6.4.x < 6.4.5 XSS (FG-IR-20-199)
medium
148336Trend Micro InterScan Web Security Virtual Appliance (IWSVA) DecryptPasswd 堆疊型緩衝區溢位
critical
148111Squid 2.x < 4.14 / 5.x < 5.0.5 (SQUID-2020: 11)
high
147661Fortinet FortiOS <= 6.2.5 / 6.4 <= 6.4.2 流量繞過 (FG-IR-20-172)
high
146433pfSense < 2.4.5 多個弱點
critical
146430pfSense < 2.4.4-p3 多個弱點
high
146206pfSense 2.4.x < 2.4.5-p1 多個弱點
high
146059pfSense 2.4.x < 2.4.4-p1 多個弱點 (SA-18_09)
high
144948Fortinet FortiOS < 6.0.11 / 6.2 < 6.2.5 / 6.4 < 6.4.2 資訊洩露 (FG-IR-20-103)
medium
144585Trend Micro IWSVA 6.5 < 6.5 Build 1919 多個弱點
critical
143482Fortinet FortiGate 6.2.2 < 6.2.6 / 6.4.x < 6.4.2 XSS (FG-IR-20-068)
medium
141122Fortinet FortiOS < 6.0.10 / 6.2.x < 6.2.4 / 6.4.x < 6.4.1不當驗證 (FG-IR-19-283)
critical
141121Fortinet FortiOS < 5.6.13 / 6.0 < 6.0.11 緩衝區溢位 (FG-IR-20-083)
critical
139923Squid 2.x < 4.13 / 5.x < 5.0.4 (SQUID-2020: 8 和 SQUID-2020: 10)
medium
139912Squid 2.x < 4.12 / 5.x < 5.0.3 (SQUID-2020: 5、 SQUID-2020: 6 & SQUID-2020: 7)
high
139547不當檢查憑證撤銷 (FG-IR-19-144)
high
139546不當檢查憑證撤銷 (FG-IR-19-144)
high
139031Trend Micro InterScan Web Security Virtual Appliance 偵測
info
139030Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 多個弱點 (000253095)
critical
136175Sophos XG Firewall - SQL 插入
critical
134891Check Point Gaia 作業系統系統管理員密碼截斷 (sk156192)
high
134890Check Point 本機權限提升
high
134563Check Point Security Gateway 拒絕服務 (sk161812)
high
134228Fortinet FortiOS 5.x >= 5.4.0 / 6.x < 6.0.9 / 6.2.x < 6.2.2 URL 重新導向弱點 (FG-IR-19-179)
medium
133358Fortinet FortiOS < 6.2.3 多個弱點 (FG-IR-19-217)
high
132317Fortinet FortiOS < 5.6.10 / 6.0 < 6.0.7 / 6.2.x < 6.2.1 易遭受攻擊的加密 (FG-IR-19-007)
medium
131320Fortinet FortiOS < 6.0.7 or 6.2.2 SSL VPN 入口網站不當輸入驗證 (FG-IR-19-236)
medium