偵測

Nessus 的 Firewalls 系列

ID名稱嚴重性
131283Fortinet FortiOS < 6.0.7 資訊洩露 MitM (FG-IR-18-100)
medium
131185Fortinet FortiOS < 5.6.11 / 6.0.0 < 6.0.7 / 6.2.0 < 6.2.2 資訊洩露 (FG-IR-19-134)
medium
130209FortiOS DRBG 熵不足 (FG-IR-19-186)
high
129782Fortinet FortiGate 5.2.0 < 5.6.11 / 6.0.x < 6.0.5 XSS (FG-IR-19-034)
medium
128552Fortinet FortiOS SSL VPN 目錄遊走弱點 (FG-IR-18-384) (直接檢查)
critical
128329Symantec ProxySG 6.5 < 6.5.10.15 / 6.6 < 6.7.4.2 XSS 與資訊洩漏弱點 (SA1472)
medium
128303Symantec ProxySG 6.5 / 6.6 / 6.7 < 6.7.4.141 OpenSSL 拒絕服務弱點 (SA1462)
high
128283Check Point Gaia 作業系統開放介面及預設密碼 (sk145612)
critical
128278Fortinet FortiOS 5.6.0 < 5.6.8 / 6.0.x < 6.0.5 在 SSL VPN 上有多個 pre-auth XSS 弱點 (FG-IR-18-383)
medium
128149Check Point Gaia 作業系統系統管理員密碼截斷 (sk155172)
critical
127134Fortinet FortiGate < 6.2.1 資訊洩露 (FG-IR-19-037)
medium
127107SonicWall SonicOS 防火牆多個管理弱點 (URGENT/11)
critical
125889Fortinet FortiOS < 6.0.5 SSL VPN web 入口網站主機標頭重新導向 (FG-IR-19-002)
medium
125888Fortinet FortiOS 5.4.1 < 5.4.11 / 5.6.x < 5.6.9 / 6.0.x < 6.0.5 SSL VPN 安全性繞過 (FG-IR-18-389)
high
125887Fortinet FortiOS < 6.0.5 SSL VPN 堆積緩衝區溢位 (FG-IR-18-388)
medium
125886Fortinet FortiOS <= 5.4, 5.6.x < 5.6.8, 6.0.x < 6.0.5 SSL VPN 緩衝區溢位 (FG-IR-18-387)
high
125885Fortinet FortiOS 5.6.3 < 5.6.8 / 6.0.x < 6.0.5 SSL VPN 目錄遊走弱點 (FG-IR-18-384)
critical
124328Fortinet FortiManager 未加密密碼弱點 (FG-IR-18-051)
high
124324Fortinet FortiGate <= 5.4.x / 5.6.x < 5.6.11 / 6.x < 6.2.0 管理權限提升 (FG-IR-17-053)
high
124280Fortinet FortiGate < 5.4.11 / 5.6.x < 5.6.8 / 6.x < 6.0.3 LDAP 認證洩漏 (FG-IR-18-230)
high
122855Fortinet FortiOS 5.6.0 遠端程式碼執行 (FG-IR-18-018)
critical
121474pfSense 不支援的版本偵測
critical
121356Fortinet FortiGate < 5.6.8 / 6.x < 6.0.3 LDAP 認證洩漏 (FG-IR-18-157)
high
119887pfSense 2.3.x <= 2.3.5-p2 / 2.4.x < 2.4.4 多個弱點 (SA-18_06 / SA-18_07 / SA-18_08)
high
119886pfSense 2.3.x < 2.3.5-p2 / 2.4.x < 2.4.3-p1 多個弱點 (SA-18_04 / SA-18_05)
high
119751Fortinet FortiOS 5.4.x < 5.4.6 / 5.6.x < 5.6.1 XSS (CVE-2017-3131)
medium
119727Squid 3.2.0.10 <= 3.2.x / 3.3.x / 3.4.x / 3.5.x <= 3.5.28 / 4.x < 4.4 拒絕服務弱點 (SQUID-2018:5)
medium
119726Squid 3.1.12.1 <= 3.1.x <= 3.1.23 / 3.2.0.4 <= 3.2.x / 3.3.x / 3.4.x / 3.5.x <= 3.5.28 / 4.x < 4.4 跨網站指令碼弱點 (SQUID-2018:4)
medium
119725Squid 3.1.12.2 <= 3.1.x <= 3.1.23 / 3.2.0.8 <= 3.2.x <= 3.2.14 / 3.3.x / 3.4.x / 3.5.x <= 3.5.27 / 4.x < 4.0.13 拒絕服務弱點 (SQUID-2018:3)
medium
119724Squid 3.x < 3.5.28 / 4.x < 4.0.23 多個拒絕服務弱點 (SQUID-2018:1) (SQUID-2018:2)
high
119723Squid 3.x < 3.5.18 / 4.x < 4.0.10 多個拒絕服務弱點 (SQUID-2016:9)
high
119722Squid 3.2.0.11 < 3.x < 3.5.18 / 4.x < 4.0.10 快取毒害弱點 (SQUID-2016:7)
high
119721Squid 3.1 < 3.x < 3.5.23 / 4.x < 4.0.17 資訊洩漏弱點 (SQUID-2016:11)
high
119421Fortinet FortiGate 5.2.x >= 5.2.12 / 5.4.6 - 5.4.7 / 5.6.1 - 5.6.3 資訊洩漏 (FG-IR-18-325)
high
118229Juniper ScreenOS < 6.3.0r26 已儲存跨網站指令碼弱點 (JSA10894)
medium
117936Fortinet FortiGate 5.x < 5.6.6 / 6.x < 6.0.2 私密 IP 和主機名稱資訊洩漏 (FG-IR-18-085)
medium
112183Fortinet FortiManager < 6.0.2 資訊洩漏弱點 (FG-IR-18-016)
medium
110812Fortinet FortiGate < 5.6.6 / 6.0.x < 6.0.1 純文字認證 (FG-IR-18-027)
high
110415Fortinet FortiGate <= 5.2.x / 5.4.x < 5.4.9 / 5.6.x < 5.6.3 多個弱點 (FG-IR-17-231、FG-IR-17-245 和 FG-IR-17-172)
medium
109038pfSense < 2.4.3 多個弱點 (SA-18_01 / SA-18_02 / SA-18_03) (Meltdown) (Spectre)
critical
109037pfSense < 2.3.5 多個弱點 (KRACK)
critical
109035Symantec ProxySG 6.5 < 6.5.10.8 / 6.6 < 6.6.5.14 / 6.7.3 < 6.7.3.7 / 6.7.4 < 6.7.4.107 多個弱點 (SA162)
medium
108809Squid < 3.5.18 主機標頭處理同源保護/內容篩選繞過 (SQUID-2016:8)
high
108517pfSense < 2.4.2 多個弱點 (SA-17_07)
medium
108515pfSense < 2.1.4 多個弱點 ( SA-14_07 )
high
107072Check Point Gaia 作業系統權限提升
medium
106583Fortinet FortiOS 5.x < 5.4.8 / 5.6.x < 5.6.3 HTTP Host 標頭 XSS(FG-IR-17-262)
medium
106507pfSense 2.3.x < 2.3.5-p1 / 2.4.x < 2.4.2-p1 多個弱點 (SA-17_10 / SA-17_11)
medium
106504pfSense < 2.3.4 多個弱點 (SA-17_04)
critical
106503pfSense < 2.3.3 多個弱點 (SA-17_01 - SA-17_03)
critical