检测

Nessus 的 CGI abuses 系列

ID名称严重性
161808Atlassian Confluence 命令注入漏洞 (CVE-2022-26134)
critical
161800Dell EMC iDRAC9 < 5.00.00.00 (DSA-2021-177)
high
161799Dell EMC iDRAC9 4.40.x < 4.40.29.00 (DSA-2021-177)
high
161798Dell EMC iDRAC8 < 2.80.80.80 或 Dell EMC iDRAC9 < 4.40.40.00 (DSA-2021-177)
high
161797Dell EMC iDRAC9 < 5.00.10.00 (DSA-2021-177)
high
161774Citrix ADC 和 Citrix Gateway 12.1.x < 12.1-64.17/13.0.x < 13.0-85.19/13.1.x < 13.1-21.50 DoS 漏洞 (CTX457048)
medium
161773Citrix ADC 和 Citrix Gateway 12.1-64.16 DoS 漏洞 (CTX457048)
high
161707Splunk Enterprise 8.1.x < 8.1.6 MFA 绕过漏洞
high
161609Splunk Enterprise 8.1 < 8.1.4 XSS
medium
161505Drupal 9.2.x < 9.2.20 / 9.3.x < 9.3.14 Drupal 漏洞 (SA-CORE-2022-010)
high
161453Jenkins Enterprise and Operations Center 2.303.x < 2.303.30.0.13 / 2.332.3.4 多个漏洞(CloudBees 安全公告 2022-05-17)
high
161441Jenkins Enterprise and Operations Center 2.277.x < 2.277.43.0.8 / 2.303.x < 2.303.30.0.7 / 2.332.1.5 多个漏洞(CloudBees 安全公告 2022-03-15)
high
161440Jenkins 插件 多个漏洞(2022 年 4 月 12 日)
high
161438ManageEngine PAM360 REST API 限制绕过漏洞 (CVE-2022-29081)
critical
161331VMware Workspace One Access / VMware Identity Manager 身份验证绕过(直接检查)(CVE-2022-22972)
critical
161273GitLab 8.12 < 14.8.6 / 14.9 < 14.9.4 / 14.10 < 14.10.1 (CVE-2022-1417)
medium
161272GitLab 13.2 < 14.8.6 / 14.9.x < 14.9.4 / 14.10.x < 14.10.1 信息泄露
medium
161271GitLab 12.10 < 14.8.6 / 14.9 < 14.9.4 / 14.10 < 14.10.1 (CVE-2022-1431)
medium
161270GitLab 9.2 < 14.8.6 / 14.9 < 14.9.4 / 14.10 < 14.10.1 (CVE-2022-1460)
medium
161269GitLab 14.4 < 14.8.6 / 14.9 < 14.9.4 / 14.10 < 14.10.1 (CVE-2022-1433)
medium
161268GitLab 11.0 < 14.8.6 / 14.9 < 14.9.4 / 14.10 < 14.10.1 (CVE-2022-1352)
medium
161267GitLab 8.12.0 < 14.8.6/14.9.0 < 14.9.4/14.10.0 < 14.10.1 (CVE-2022-1406)
medium
161266GitLab 13.9 < 14.8.6 / 14.9 < 14.9.4 / 14.10 < 14.10.1 (CVE-2022-1510)
high
161265GitLab 12.6 < 14.8.6 / 14.9 < 14.9.4 / 14.10 < 14.10.1 (CVE-2022-1426)
low
161210Jenkins Enterprise and Operations Center 2.303.x < 2.303.30.0.10 或 2.332.2.6 多个漏洞(CloudBees 安全公告 2022-04-12)
high
161190ManageEngine Password Manager Pro REST API 限制绕过漏洞 (CVE-2022-29081)
critical
161189Sophos XG Firewall 用户门户网站和 Webadmin 认证绕过漏洞 (CVE-2022-1040)
critical
160751ManageEngine Access Manager Plus REST API 限制绕过 (CVE-2022-29081)
critical
160671GitLab 1.0.2 < 14.8.6 多个漏洞
high
160670GitLab < 14.8.6/14.9.x < 14.9.4/ 14.10.x < 14.10.1 多个漏洞
medium
160549ManageEngine SharePoint Manager Plus < 4329 多个漏洞
critical
160470Trend Micro Apex One Management Web 控制台检测
info
160297Apache APISIX Dashboard < 2.10.1 身份验证绕过(直接检查)
critical
160235ManageEngine ADAudit Plus < Build 7060 XXE RCE
critical
160208WSO2 多种产品文件上传远程命令执行 (CVE-2022-29464)
critical
160201QNAP QTS/QuTS Hero 默认凭据
critical
160182VMware Workspace One Access/VMware Identity Manager 服务器端模板注入 RCE (CVE-2022-22954)
critical
160077Atlassian Jira < 8.13.18/8.14.x < 8.20.6/ 8.21.x Seraph 中的认证绕过漏洞 (JRASERVER-73650)
critical
160024Drupal 9.2.x < 9.2.18 / 9.3.x < 9.3.12 多个漏洞 (drupal-2022-04-20)
high
159965GitLab 7.7 < 14.4.5 / 14.5.0 < 14.5.3 / 14.6.0 < 14.6.2 (CVE-2022-0154)
high
159964GitLab < 14.4.5 (CVE-2022-0124)
medium
159963GitLab < 14.4.5 (CVE-2022-0093)
medium
159962GitLab 13.2 < 14.4.5/14.5 < 14.5.3/14.6 < 14.6.2 (CVE-2022-0172)
medium
159961GitLab 13.10 < 14.4.5/14.5 < 14.5.3/14.6 < 14.6.2 (CVE-2022-0152)
medium
159960GitLab 12.10 < 14.4.5 / 14.5.0 < 14.5.3 / 14.6.0 < 14.6.2 (CVE-2022-0151)
medium
159959GitLab 8.4 < 14.4.5 / 14.5 < 14.5.3 / 14.6 < 14.6.2 (CVE-2021-39927)
medium
159958GitLab 12.0 < 14.3.6/14.4 < 14.4.4/14.5 < 14.5.2 (CVE-2021-39942)
medium
159957GitLab 14.3 < 14.3.6/14.4 < 14.4.4/14.5 < 14.5.2 (CVE-2021-39946)
medium
159956GitLab 12.0 < 14.4.5 / 14.5.0 < 14.5.3 / 14.6.0 < 14.6.2 (CVE-2022-0125)
medium
159955GitLab < 14.4.5 (CVE-2022-0090)
medium