CGI abuses Family for Nessus

ID	Name	Severity
135698	Oracle Primavera P6 Enterprise Project Portfolio Management (EPPM) Multiple Vulnerabilities (Apr 2020 CPU)	medium
135584	Oracle Primavera Unifier (Apr 2020 CPU)	critical
135583	Oracle Primavera Gateway (Apr 2020 CPU)	critical
135297	Symantec Data Center Security Manager Privilege Escalation	high
135293	ManageEngine Desktop Central 10 < Build 100479 Remote Code Execution (direct check)	critical
135287	Atlassian Jira < 7.1.9 Role Name XSS (JRASERVER-61861)	medium
135277	Palo Alto Expedition < 1.1.13 Cross-Site Scripting Vulnerability (PAN-SA-2019-0009)	medium
135203	Atlassian Jira 7.13 < 8.5.5 Jira Project Key Information Disclosure (JRASERVER-70565)	medium
135187	Dell iDRAC Buffer Overflow Vulnerability (CVE-2020-5344)	critical
135186	ManageEngine Desktop Central < 10 Build 10.0.515 Information Disclosure	high
135182	Ansible Tower 3.4.x < 3.4.6 / 3.5.x < 3.5.6 / 3.6.x < 3.6.4 Denial of Service Vulnerability	medium
135179	EMC RSA Authentication Manager < 8.4 P10 Multiple Vulnerabilites (DSA-2020-052)	medium
135178	Jenkins < (2.204.6 / 2.222.1) LTS / 2.228 Multiple Vulnerabilities	high
134980	Atlassian Jira 8.2 < 8.5.4 Support Files Improper Authorization Vulnerability (JRASERVER-70564)	medium
134979	Drupal 5.x < 5.11 / 6.x < 6.5 Multiple Vulnerabilities (SA-2008-060)	high
134978	Atlassian Jira 8.2.x < 8.6.0 Improper Authorization on Project Titles Information Disclosure Vulnerability (JRASERVER_70569)	medium
134976	iLO 3 < 1.90 / iLO 4 < 2.61 / iLO 5 < 1.35 Remote Code Execution Vulnerability (HPESBHF03866)	high
134953	Atlassian Jira 8.3.x < 8.5.2 DLL Hijacking Vulnerability (JRASERVER-70407)	high
134952	Atlassian Jira 7.13.x < 8.6.0 JMX monitoring flag CSRF Vulnerability (JRASERVER-70570)	medium
134949	PHP 7.2.x < 7.2.29 Multiple Vulnerabilities	medium
134944	PHP 7.3.x < 7.3.16 Multiple Vulnerabilities	high
134760	Atlassian JIRA < 8.6.1 Information Disclosure	medium
134759	Atlassian JIRA < 7.13.12 / 8.x < 8.5.4 / 8.6.x < 8.6.1 'Atlassian Application Links' Plugin Privilege Escalation	medium
134702	Drupal 8.7.x < 8.7.12 / 8.8.x < 8.8.4 Drupal Vulnerability (SA-CORE-2020-001) (drupal-2020-03-18)	medium
134677	ManageEngine Desktop Central 10 < Build 100479 Remote Code Execution	critical
134403	Joomla 1.7.x < 3.9.16 Multiple Vulnerabilities (5783-joomla-3-9-16)	critical
134162	PHP 7.2.x < 7.2.28 / PHP 7.3.x < 7.3.15 / 7.4.x < 7.4.3 Multiple Vulnerabilities	critical
133955	HP Smart Update Manager Remote Unauthorized Access.	critical
133856	WordPress Plugin 'ThemeGrill Demo Importer' 1.3.4 < 1.6.3 Database Wipe and Auth Bypass	high
133855	Atlassian JIRA 8.5.x / 8.6.x 'Atlassian Application Links' Plugin CSRF	medium
133854	Atlassian JIRA 7.x >= 7.6 / 8.x < 8.5.4 / 8.6.x < 8.6.2 Multiple CSRF	medium
133846	WordPress Plugin 'Duplicator' < 1.3.28 Unauthenticated Arbitrary File Download	high
133527	Jenkins < 2.204.2 LTS / 2.219 Multiple Vulnerabilities	medium
133400	PHP 7.2.x < 7.2.27 / PHP 7.3.x < 7.3.14 / 7.4.x < 7.4.2 Multiple Vulnerabilities	critical
133359	Oracle Primavera Unifier Multiple Vulnerabilities (Jan 2020 CPU)	critical
133308	Joomla 3.0.x < 3.9.15 Multiple Vulnerabilities (5782-joomla-3-9-15)	high
133078	Cisco DCNM Authentication Bypass (CVE-2019-15977)	high
133054	Oracle Primavera P6 Enterprise Project Portfolio Management (EPPM) Multiple Vulnerabilities (Jan 2020 CPU)	high
132955	Oracle Primavera Gateway Multiple Vulnerabilities (Apri 2017 CPU)	critical
132936	Oracle Primavera Gateway Multiple Vulnerabilities (Jan 2020 CPU)	critical
132770	PHP 7.2.x < 7.2.26 Multiple Vulnerabilities	high
132769	PHP 7.3.x < 7.3.13 / 7.4.x < 7.4.1 Multiple Vulnerabilities	critical
132752	Citrix ADC and Citrix NetScaler Gateway Arbitrary Code Execution (CTX267027) (Direct Check)	critical
132729	Atlassian JIRA < 7.6.1 CSRF vulnerability (JRASERVER-66643)	medium
132727	Atlassian JIRA < 7.13.12 / 8.x < 8.4.3 / 8.5.x < 8.5.2 Authorization Bypass (JRASERVER-70405)	medium
132724	Atlassian JIRA < 7.13.9 / 8.x < 8.3.3 XSS (JRASERVER-69790)	medium
132722	Atlassian JIRA < 7.13.6 / 8.x < 8.4.0 XSS (JRASERVER-69795)	medium
132674	Atlassian JIRA 6.2.1 < 7.4.4 Cross-Site Scripting (XSS) Vulnerability (JRASERVER-66719)	medium
132673	Atlassian JIRA < 7.7.1 Cross-Site Scripting (XSS) Vulnerability (JRASERVER-67108)	medium
132672	Atlassian JIRA < 7.8.1 Cross-Site Scripting (XSS) Vulnerability (JRASERVER-67106)	medium

Detections

Analytics

CGI abuses Family for Nessus

medium

critical

critical

high

critical

medium

medium

medium

critical

high

medium

medium

high

medium

high

medium

high

high

medium

medium

high

medium

medium

medium

critical

critical

critical

critical

high

medium

medium

high

medium

critical

critical

high

high

high

critical

critical

high

critical

critical

medium

medium

medium

medium

medium

medium

medium