CGI abuses Family for Nessus

ID	Name	Severity
234846	SAP NetWeaver Visual Composer Metadata Uploader Improper Authorization (CVE-2025-31324) (Direct Check)	critical
234801	Mattermost Server 9.11.x < 9.11.10 / 10.4.x < 10.4.3 / 10.5.x < 10.5.1 / 10.6.0 (MMSA-2024-00401)	low
234798	GitLab 16.7 < 17.9.7 / 17.10 < 17.10.5 / 17.11 < 17.11.1 (CVE-2025-0639)	medium
234797	GitLab 16.6 < 17.9.7 / 17.10 < 17.10.5 / 17.11 < 17.11.1 (CVE-2025-1908)	high
234796	Mattermost Server 9.11.x < 9.11.10 / 10.5.x < 10.5.2 / 10.6.0 (MMSA-2025-00453)	low
234795	Mattermost Server 9.11.x < 9.11.10 / 10.4.x < 10.4.4 / 10.5.x < 10.5.2 / 10.6.0 (MMSA-2024-00410)	low
234794	Mattermost Server 9.11.x < 9.11.10 / 10.4.x < 10.4.4 / 10.5.x < 10.5.2 / 10.6.0 (MMSA-2025-00452)	medium
234793	Mattermost Server 9.11.x < 9.11.10 / 10.4.x < 10.4.4 / 10.5.x < 10.5.2 / 10.6.0 (MMSA-2025-00436)	medium
234792	Oracle Primavera Unifier Unauthorized Write (Apr 2025 CPU)	medium
234791	Oracle Primavera Unifier Multiple Vulnerabilities (Apr 2025 CPU)	high
234790	Oracle Primavera Unifier DoS (Apr 2025 CPU)	high
234550	Oracle Primavera Gateway (Apr 2025 CPU)	high
234499	DNN < 9.13.8 DotNetNuke.Core Server-Side Request Forgery (CVE-2025-32372)	medium
234130	GitLab 17.9 < 17.9.6 / 17.10 < 17.10.4 (CVE-2025-2469)	low
234129	GitLab 13.12 < 17.8.7 / 17.9 < 17.9.6 / 17.10 < 17.10.4 (CVE-2025-2408)	medium
234128	GitLab < 17.8.7 / 17.9 < 17.9.6 / 17.10 < 17.10.4 (CVE-2025-1677)	medium
234127	GitLab 7.7 < 17.8.7 / 17.9 < 17.9.6 / 17.10 < 17.10.4 (CVE-2025-0362)	medium
234076	Sante PACS Server Path Traversal (CVE-2025-2264)	high
234029	Joomla 4.0.x < 4.4.13 / 5.0.x < 5.2.6 Joomla 5.2.6 Security Release (5925-joomla-5-2-6-security-release)	high
233866	Mitel MiCollab <= 9.8 SP2 (9.8.2.12) Multiple Vulnerabilities (MISA-2024-0029)	critical
233861	Zabbix 5.x < 5.0.46rc1 / 6.x < 6.0.38rc1 / 7.0.x < 7.0.9rc1 / 7.2.x < 7.2.3rc1 User Enumeration (ZBX-26255)	low
233779	Jenkins LTS < 2.492.3 / Jenkins weekly < 2.504 Multiple Vulnerabilities	medium
233778	Jenkins plugins Multiple Vulnerabilities (2025-04-02)	high
233660	Splunk Enterprise 9.1.0 < 9.1.8, 9.2.0 < 9.2.5, 9.3.0 < 9.3.3 (SVD-2025-0301)	high
233656	Kubernetes Ingress NGINX Controller Arbitrary Code Execution (CVE-2025-1974)	critical
233477	SAP NetWeaver AS Java Path Traversal (CVE-2017-12637)	high
233455	Mattermost Server 9.11.x < 9.11.9 / 10.3.x < 10.3.4 / 10.4.x < 10.4.3 (MMSA-2025-00421)	medium
233454	Mattermost Server 9.11.x < 9.11.9 / 10.3.x < 10.3.4 / 10.4.x < 10.4.3 / 10.5 (MMSA-2025-00444)	high
233453	Mattermost Server 9.11.x < 9.11.9 / 10.3.x < 10.3.4 / 10.4.x < 10.4.3 (MMSA-2025-00418)	medium
233452	Mattermost Server 10.4.x < 10.4.3 / 10.3.x < 10.3.4 /9.11.x < 9.11.9 / 10.5.x < 10.5.1 (MMSA-2025-00432)	medium
233451	Mattermost Server 9.11.x < 9.11.9 (MMSA-2024-00409)	low
233450	Mattermost Server 9.11.x < 9.11.9 / 10.3.x < 10.3.4 / 10.4.x < 10.4.3 (MMSA-2025-00422)	medium
233432	GitLab 13.5.0 < 17.8.6 / 17.9 < 17.9.3 / 17.10 < 17.10.1 (CVE-2025-2255)	high
233431	GitLab 17.7 < 17.8.6 / 17.9 < 17.9.3 / 17.10 < 17.10.1 (CVE-2025-0811)	high
233430	GitLab 17.8 < 17.8.6 / 17.9 < 17.9.3 / 17.10 < 17.10.1 (CVE-2025-2867)	medium
233429	GitLab 17.4 < 17.8.6 / 17.9 < 17.9.3 / 17.10 < 17.10.1 (CVE-2025-2242)	high
233368	Splunk Enterprise 9.1.0 < 9.1.8, 9.2.0 < 9.2.5, 9.3.0 < 9.3.3, 9.4.0 < 9.4.1 (SVD-2025-0305)	medium
233367	Splunk Enterprise 9.1.0 < 9.1.8, 9.2.0 < 9.2.5, 9.3.0 < 9.3.3, 9.4.0 < 9.4.1 (SVD-2025-0306)	medium
233366	Splunk Enterprise 9.1.0 < 9.1.8, 9.2.0 < 9.2.5, 9.3.0 < 9.3.3 (SVD-2025-0304)	medium
233365	Splunk Enterprise 9.1.0 < 9.1.8, 9.2.0 < 9.2.5, 9.3.0 < 9.3.3, 9.4.0 < 9.4.1 (SVD-2025-0307)	medium
233364	Splunk Enterprise 9.1.0 < 9.1.8, 9.2.0 < 9.2.5, 9.3.0 < 9.3.3 (SVD-2025-0303)	medium
233363	Splunk Enterprise 9.1.0 < 9.1.8, 9.2.0 < 9.2.5, 9.3.0 < 9.3.3, 9.4.0 < 9.4.1 (SVD-2025-0302)	high
233297	Apache Tomcat Path Equivalence RCE (CVE-2025-24813)	critical
233193	Liferay DXP XSS (CVE-2025-2536)	medium
233192	Liferay Portal CE 7.4.3.82 < 7.4.3.129 XSS	medium
232982	Drupal 10.3.x < 10.3.14 / 10.4.x < 10.4.5 / 11.x < 11.0.13 / 11.1.x < 11.1.5 Drupal Vulnerability (SA-CORE-2025-004)	medium
232887	SolarWinds Web Help Desk < 12.8.5 Information Disclosure	medium
232871	Jenkins plugins Multiple Vulnerabilities (2025-03-19)	medium
232730	ServiceNow Platform Authorization Bypass (CVE-2025-0337)	medium
232707	PHP 8.2.x < 8.2.28 Multiple Vulnerabilities	high

Detections

Analytics

CGI abuses Family for Nessus

critical

low

medium

high

low

low

medium

medium

medium

high

high

high

medium

low

medium

medium

medium

high

high

critical

low

medium

high

high

critical

high

medium

high

medium

medium

low

medium

high

high

medium

high

medium

medium

medium

medium

medium

high

critical

medium

medium

medium

medium

medium

medium

high