CGI abuses Family for Nessus

ID	Name	Severity
190756	Adobe FrameMaker Publishing Server Authentication Bypass (CVE-2024-20738)	critical
190508	Mattermost Server < 8.1.8 / 9.x < 9.1.5 / 9.2.x < 9.2.4 (MMSA-2023-00276)	medium
190493	TYPO3 8.0.0 < 8.7.57 ELTS / 9.0.0 < 9.5.46 ELTS / 10.0.0 < 10.4.43 ELTS / 11.0.0 < 11.5.35 / 12.0.0 < 12.4.11 / 13.0.1 (TYPO3-CORE-SA-2024-004)	medium
190467	TYPO3 8.0.0 < 8.7.57 ELTS / 9.0.0 < 9.5.46 ELTS / 10.0.0 < 10.4.43 ELTS / 11.0.0 < 11.5.35 / 12.0.0 < 12.4.11 / 13.0.1 (TYPO3-CORE-SA-2024-002)	high
190466	TYPO3 8.0.0 < 8.7.57 ELTS / 9.0.0 < 9.5.46 ELTS / 10.0.0 < 10.4.43 ELTS / 11.0.0 < 11.5.35 / 12.0.0 < 12.4.11 / 13.0.1 (TYPO3-CORE-SA-2024-001)	medium
190465	TYPO3 8.0.0 < 8.7.57 ELTS / 9.0.0 < 9.5.46 ELTS / 10.0.0 < 10.4.43 ELTS / 11.0.0 < 11.5.35 / 12.0.0 < 12.4.11 / 13.0.1 (TYPO3-CORE-SA-2024-005)	medium
190453	TYPO3 8.0.0 < 8.7.57 ELTS / 9.0.0 < 9.5.46 ELTS / 10.0.0 < 10.4.43 ELTS / 11.0.0 < 11.5.35 / 12.0.0 < 12.4.11 / 13.0.1 (TYPO3-CORE-SA-2024-003)	medium
190452	TYPO3 8.0.0 < 8.7.57 ELTS / 9.0.0 < 9.5.46 ELTS / 10.0.0 < 10.4.43 ELTS / 11.0.0 < 11.5.35 / 12.0.0 < 12.4.11 / 13.0.1 (TYPO3-CORE-SA-2024-006)	high
190362	Kibana 8.0.x < 8.12.1 (ESA-2024-01)	medium
190346	CKEditor Detection via CDN	info
190345	GitLab 15.11 < 16.6.7 / 16.7 < 16.7.5 / 16.8 < 16.8.2 (CVE-2023-6386)	medium
190344	GitLab 16.8 < 16.8.2 (CVE-2024-1250)	medium
190219	VMWare Aria Operations for Networks 6.x < 6.12 Multiple Vulnerabilities (VMSA-2024-0002)	high
190141	SolarWinds Platform 2023.4.0 < 2024.1 Multiple Vulnerabilities SQLI	high
190108	GitLab 13.3.3 < 16.6.7 / 16.7 < 16.7.5 / 16.8 < 16.8.2 (CVE-2024-1066)	medium
190107	GitLab 16.4 < 16.6.7 / 16.7 < 16.7.5 / 16.8 < 16.8.2 (CVE-2023-6840)	medium
190095	SolarWinds Platform < 2023.4 Multiple Vulnerabilities	high
190094	ManageEngine ADAudit Plus < Build 7271 Multiple Vulnerabilities	critical
190063	Ivanti Connect Secure 9.x / 22.x SSRF-RCE Chain (CVE-2024-21893)	high
190062	Ivanti Connect Secure 9.x / 22.x SSRF (CVE-2024-21893)	high
190061	Ivanti Policy Secure 9.x / 22.x SSRF (CVE-2024-21893)	high
190060	Ivanti Policy Secure 9.x / 22.x SSRF-RCE Chain (CVE-2024-21893)	high
189951	Ivanti Connect Secure 9.x / 22.x Command Injection Vulnerability (CVE-2024-21887)	critical
189950	Ivanti Policy Secure 9.x / 22.x Command Injection Vulnerability (CVE-2024-21887)	critical
189949	Ivanti Policy Secure 9.x / 22.x Authentication Bypass Vulnerability (CVE-2023-46805)	high
189948	Ivanti Connect Secure 9.x / 22.x Authentication Bypass Vulnerability (CVE-2023-46805)	high
189904	ManageEngine ADAudit Plus < Build 7270 Directory Traversal	low
189825	WordPress 6.0 < 6.4.3	high
189636	Atlassian Confluence 8.0 < 8.5.4 (CONFSERVER-93833) (Direct Check)	critical
189596	GitLab 13.7 < 16.6.6 / 16.7 < 16.7.4 / 16.8 < 16.8.1 (CVE-2023-5933)	medium
189595	GitLab 0 < 16.6.6 / 16.7 < 16.7.4 / 16.8 < 16.8.1 (CVE-2023-5612)	medium
189594	GitLab 16.0 < 16.5.8 / 16.6 < 16.6.6 / 16.7 < 16.7.4 / 16.8 < 16.8.1 (CVE-2024-0402)	critical
189593	GitLab 14.0 < 16.6.6 / 16.7 < 16.7.4 / 16.8 < 16.8.1 (CVE-2024-0456)	medium
189592	GitLab 12.7 < 16.6.6 / 16.7 < 16.7.4 / 16.8 < 16.8.1 (CVE-2023-6159)	medium
189534	SolarWinds Platform < 2023.3 Multiple Vulnerabilities	high
189513	MinIO Information Disclosure (CVE-2023-28432)	high
189505	ManageEngine ServiceDesk Plus MSP < 14.5 Build 14504 XSS	medium
189463	Jenkins LTS < 2.426.3 / Jenkins weekly < 2.442 Multiple Vulnerabilities	critical
189462	Jenkins plugins Multiple Vulnerabilities (2024-01-24)	high
189373	Fortra GoAnywhere Managed File Transfer (MFT) < 7.4.1 Authentication Bypass (CVE-2024-0204)	critical
189300	Splunk Enterprise 9.0.0 < 9.0.8 (SVD-2024-0107)	medium
189299	Splunk Enterprise 9.0.0 < 9.0.8, 9.1.0 < 9.1.3 (SVD-2024-0106)	low
189298	Splunk Enterprise 9.0.0 < 9.0.8, 9.1.0 < 9.1.3 (SVD-2024-0105)	medium
189297	Splunk Enterprise 9.0.0 < 9.0.8, 9.1.0 < 9.1.3 (SVD-2024-0108)	high
189296	Metabase RCE (CVE-2023-38646)	critical
189276	ownCloud Server < 10.13.3 Multiple Vulnerabilities	critical
189240	Atlassian Confluence < 7.19.17 / 8.0.x < 8.5.5 / 8.6.x < 8.7.2 (CONFSERVER-93516)	high
189239	Oracle MySQL Enterprise Monitor (January 2024 CPU)	critical
189231	Drupal < 9.5.11 / 10.0 DoS	high
189185	Oracle Primavera Unifier (January 2024 CPU)	critical

Detections

Analytics

CGI abuses Family for Nessus

critical

medium

medium

high

medium

medium

medium

high

medium

info

medium

medium

high

high

medium

medium

high

critical

high

high

high

high

critical

critical

high

high

low

high

critical

medium

medium

critical

medium

medium

high

high

medium

critical

high

critical

medium

low

medium

high

critical

critical

high

critical

high

critical