检测

Nessus 的 Firewalls 系列

ID名称严重性
174258Fortinet FortiWeb xss (FG-IR-22-428)
medium
174237Fortinet Fortigate sslvpnd 中的开放重定向 (FG-IR-22-479)
medium
174223Fortinet Fortigate xss (FG-IR-22-224)
medium
173302SonicWall SonicOS 缓冲区溢出 (SNWLID-2023-0004)
high
172582Zyxel USG 硬编码默认密码 (CVE-2020-29583)
critical
172579Fortinet FortiOS - 路径遍历漏洞 (FG-IR-22-401)
high
172492Fortinet FortiOS - 信息泄露 (FG-IR-22-364)
medium
172491Fortinet FortiOS - 执行命令中的路径遍历漏洞 (FG-IR-22-369)
high
172440SonicWall SonicOS 安全配置错误 (SNWLID-2023-0005)
high
172395Fortinet Fortigate 访问 SSLVPNd 中的空指针 (FG-IR-22-477)
medium
172390Fortinet Fortigate 管理接口中的堆缓冲区下溢 (FG-IR-23-001)
critical
172258Zyxel Unified Security Gateway (USG) 本地检测
info
172171Fortinet FortiWeb Proxyd 中存在基于堆栈的缓冲区溢出 (FG-IR-21-186)
critical
171902Fortinet FortiWeb SAML 管理中存在基于堆栈的缓冲区溢出 (FG-IR-22-151)
high
171888Fortinet Fortigate Cookie 加密中的 Padding Oracle (FG-IR-21-126)
medium
171887Fortinet FortiWeb Cookie 加密中的 Padding Oracle (FG-IR-21-126)
medium
171852Fortinet Fortigate 管理界面存在任意读取/写入漏洞 (FG-IR-22-391)
high
171238Sophos SG UTM < 9.511 / 9.6 < 9.607 / 9.7 < 9.705 RCE (CVE-2020-25223)
critical
170906Sophos Unified Threat Management (UTM) 本地检测
info
170671Fortinet FortiManager 错误用户管理 (FG-IR-22-371)
high
168637Fortinet Fortigate sslvpnd 中存在基于堆的缓冲区溢出 (FG-IR-22-398)
critical
168124Sophos XG Firewall <= 19.0.1 RCE
critical
166983Fortinet Fortigate RSA SSH 主机密钥关闭时丢失 (FG-IR-22-228)
high
166982Fortinet Fortigate 只读用户可使用 API 添加/修改接口字段 (FG-IR-22-174)
medium
166981SSL-VPN 接口上的 Fortinet Fortigate Telnet 导致信息泄漏 (FG-IR-22-223)
high
165982Fortinet Fortigate 通过 switch-control CLI 命令进行特权升级 (FG-IR-21-242)
high
165765Fortinet FortiWeb sqli (FG-IR-22-140)
high
165763Fortinet Fortigate 管理界面中的认证绕过 (FG-IR-22-377)
critical
165242Fortinet Fortigate keytab 加密方案中的缺陷 (FG-IR-22-158)
low
165179Fortinet Fortigate xss (FG-IR-21-222)
medium
164722Fortinet FortiWeb - 由于 API 控制器中的直接输入插值而导致的 OS 命令注入 (FG-IR-21-180)
high
163711Fortinet Fortigate Inter-VDOM 信息泄露 (FG-IR-22-036)
medium
163262Fortinet FortiOS 缓冲区溢出漏洞 (FG-IR-21-206)
medium
163254Fortinet FortiManager 缓冲区溢出漏洞 (FG-IR-21-206)
medium
163253Fortinet FortiOS 缓冲区溢出漏洞 (FG-IR-21-206)
medium
163252Fortinet FortiOS 7.0.x <= 7.0.5 / 6.4.x <= 6.4.9 XSS (FG-IR-21-057)
medium
162782Fortinet FortiOS 整数溢出 (FG-IR-21-155)
medium
162313Fortinet FortiOS < 6.4 MitM (FG-IR-18-292)
medium
161892Fortinet FortiOS < 6.0.14 / 6.2 < 6.2.10 / 6.4 < 6.4.8 / 7.0 < 7.0.3 任意文件下载漏洞 (FG-IR-21-201)
high
161660Fortinet FortiOS 证书验证漏洞 (FG-IR-21-239)
medium
161659Fortinet FortiOS 访问控制漏洞 (FG-IR-21-147)
medium
161606Fortinet FortiOS 敏感信息泄露 (FG-IR-21-231)
medium
159541Sophos XG Firewall <= 18.5.3 RCE
critical
158390Fortinet FortiOS 7.0.x < 7.0.2 路径遍历 (FG-IR-21-181)
high
156783Fortinet FortiOS 权限升级 (FG-IR-20-131)
high
156755Fortinet FortiOS 硬编码加密密钥 (FG-IR-21-051)
high
156754Fortinet FortiOS CSRF (FG-IR-20-158)
high
156752Fortinet FortiOS 整数溢出 (FG-IR-21-049)
critical
156569Fortinet FortiOS 缓冲区溢出 (FG-IR-21-173)
medium
156550Fortinet FortiOS 基于堆的缓冲区溢出 (FG-IR-21-115)
high