Nessus 的 Firewalls 系列

ID名称严重性
125886Fortinet FortiOS <= 5.4, 5.6.x < 5.6.8, 6.0.x < 6.0.5 SSL VPN 缓冲区溢出 (FG-IR-18-387)
high
125885Fortinet FortiOS 5.6.3 < 5.6.8 / 6.0.x < 6.0.5 SSL VPN 目录遍历漏洞 (FG-IR-18-384)
critical
124328Fortinet FortiManager 未加密密码漏洞 (FG-IR-18-051)
high
124324Fortinet FortiGate < 6.2.0 管理权限提升 (FG-IR-17-053)
high
124280Fortinet FortiGate < 5.4.11 / 5.6.x < 5.6.8 / 6.x < 6.0.3 LDAP 认证泄露 (FG-IR-18-157)
high
122855Fortinet FortiOS 5.6.0 远程代码执行 (FG-IR-18-018)
critical
121474pfSense 不支持版本检测
critical
121356Fortinet FortiGate < 5.6.8 / 6.x < 6.0.3 LDAP 凭据泄露 (FG-IR-18-157)
high
119887pfSense 2.3.x <= 2.3.5-p2 / 2.4.x < 2.4.4 多个漏洞 (SA-18_06 / SA-18_07 / SA-18_08)
high
119886pfSense 2.3.x < 2.3.5-p2 / 2.4.x < 2.4.3-p1 多个漏洞 (SA-18_04 / SA-18_05)
high
119751Fortinet FortiOS 5.4.x < 5.4.6 / 5.6.x < 5.6.1 XSS (CVE-2017-3131)
medium
119727Squid 3.2.0.10 <= 3.2.x / 3.3.x / 3.4.x / 3.5.x <= 3.5.28 / 4.x < 4.4 拒绝服务漏洞 (SQUID-2018:5)
medium
119726Squid 3.1.12.1 <= 3.1.x <= 3.1.23 / 3.2.0.4 <= 3.2.x / 3.3.x / 3.4.x / 3.5.x <= 3.5.28 / 4.x < 4.4 跨站脚本漏洞 (SQUID-2018:4)
medium
119725Squid 3.1.12.2 <= 3.1.x <= 3.1.23 / 3.2.0.8 <= 3.2.x <= 3.2.14 / 3.3.x / 3.4.x / 3.5.x <= 3.5.27 / 4.x < 4.0.13 拒绝服务漏洞 (SQUID-2018:3)
medium
119724Squid 3.x < 3.5.28 / 4.x < 4.0.23 多个拒绝服务漏洞 (SQUID-2018:1) (SQUID-2018:2)
high
119723Squid 3.x < 3.5.18 / 4.x < 4.0.10 多个拒绝服务漏洞 (SQUID-2016:9)
high
119722Squid 3.2.0.11 < 3.x < 3.5.18 / 4.x < 4.0.10 缓存中毒漏洞 (SQUID-2016:7)
high
119721Squid 3.1 < 3.x < 3.5.23 / 4.x < 4.0.17 本地信息泄露漏洞 (SQUID-2016:11)
high
119421Fortinet FortiGate 5.2.x >= 5.2.12 / 5.4.6 - 5.4.7 / 5.6.1 - 5.6.3 信息泄露 (FG-IR-18-325)
high
118229Juniper ScreenOS < 6.3.0r26 存储型跨站脚本漏洞 (JSA10894)
medium
117936Fortinet FortiGate 5.x < 5.6.6 / 6.x < 6.0.2 隐私 IP 和主机名称信息泄露 (FG-IR-18-085)
medium
112183Fortinet FortiManager < 6.0.2 信息泄露漏洞 (FG-IR-18-016)
medium
110812Fortinet FortiGate < 5.6.6 / 6.0.x < 6.0.1 纯文字凭证 (FG-IR-18-027)
high
110415Fortinet FortiGate <= 5.2.x / 5.4.x < 5.4.9 / 5.6.x < 5.6.3 多个漏洞 (FG-IR-17-231、FG-IR-17-245 和 FG-IR-17-172)
medium
109038pfSense < 2.4.3 多个漏洞 (SA-18_01 / SA-18_02 / SA-18_03) (Meltdown) (Spectre)
critical
109037pfSense < 2.3.5 多个漏洞 (KRACK)
critical
109035Symantec ProxySG 6.5 < 6.5.10.8 / 6.6 < 6.6.5.14 / 6.7.3 < 6.7.3.7 / 6.7.4 < 6.7.4.107 多个漏洞 (SA162)
medium
108809Squid < 3.5.18 主机标头处理同源保护/内容筛选绕过 (SQUID-2016:8)
high
108517pfSense < 2.4.2 多个漏洞 (SA-17_07)
medium
108515pfSense < 2.1.4 多个漏洞 ( SA-14_07 )
high
107072Check Point Gaia 操作系统权限提升
medium
106583Fortinet FortiOS 5.x < 5.4.8 / 5.6.x < 5.6.3 HTTP 主机标头 XSS(FG-IR-17-262)
medium
106507pfSense 2.3.x < 2.3.5-p1 / 2.4.x < 2.4.2-p1 多个漏洞 (SA-17_10 / SA-17_11)
medium
106504pfSense < 2.3.4 多个漏洞 (SA-17_04)
critical
106503pfSense < 2.3.3 多个漏洞 (SA-17_01 - SA-17_03)
critical
106502pfSense < 2.3.1-p5 多个漏洞 (SA-16_07 / SA-16_08)
high
106500pfSense < 2.3.1 多个漏洞 (SA-16_03 / SA-16-04)
high
106499pfSense < 2.3 多个漏洞 (SA-16_01 - SA-16_02)
critical
106498pfSense < 2.2.6 多个漏洞 (SA-15_09 / SA-15_10 / SA-15_11)
critical
106497pfSense < 2.2.5 多个漏洞 (SA-15_08)
high
106496pfSense < 2.2.4 多个漏洞 (SA-15_07)
medium
106495pfSense < 2.2.3 多个漏洞 (SA-15_07) (Logjam)
critical
106488pfSense < 2.1.1 多个漏洞 (SA-14_02 / SA-14_03)
high
106198pfSense Web 界面检测
info
106197Juniper ScreenOS < 6.3.0r25 Etherleak 漏洞 (JSA10841)
medium
105779Symantec ProxySG 6.5 < 6.5.10.6 / 6.6 < 6.6.5.13 / 6.7 < 6.7.3.1 多个漏洞 (SA155)
medium
105654Juniper ScreenOS 6.3 SSG-5 和 SSG-20 (KRACK)
medium
105653Junos OS 12.1X46 SRX 210、240、650 系列防火墙 (KRACK)
medium
105157OTRS WebUI 检测
info
105085Check Point Gaia 操作系统 < R77.20 多个 NTP 客户端漏洞 (sk103825)
high