Firewalls Family for Nessus

ID	Name	Severity
141122	Fortinet FortiOS < 6.0.10 / 6.2.x < 6.2.4 / 6.4.x < 6.4.1 Improper Authentication (FG-IR-19-283)	critical
141121	Fortinet FortiOS < 5.6.13 / 6.0 < 6.0.11 Buffer Overflow (FG-IR-20-083)	high
139923	Squid 2.x < 4.13 / 5.x < 5.0.4 (SQUID-2020:8 and SQUID-2020:10)	medium
139912	Squid 2.x < 4.12 / 5.x < 5.0.3 (SQUID-2020:5, SQUID-2020:6 & SQUID-2020:7)	high
139547	Improper Check for Certificate Revocation (FG-IR-19-144)	high
139546	Improper Check for Certificate Revocation (FG-IR-19-144)	high
139031	Trend Micro InterScan Web Security Virtual Appliance Detection	info
139030	Trend Micro InterScan Web Security Virtual Appliance (IWSVA) Multiple Vulnerabilities (000253095)	critical
136175	Sophos XG Firewall - SQL Injection	critical
134891	Check Point Gaia Operating System Administrator password truncation (sk156192)	high
134890	Check Point Local Privilege Escalation	high
134563	Check Point Security Gateway Denial of Service (sk161812)	high
134228	Fortinet FortiOS 5.x >= 5.4.0 / 6.x < 6.0.9 / 6.2.x < 6.2.2 URL Redirection Vulnerability (FG-IR-19-179)	medium
133358	Fortinet FortiOS < 6.2.3 Multiple Vulnerabilities (FG-IR-19-217)	high
132317	Fortinet FortiOS < 5.6.10 / 6.0 < 6.0.7 / 6.2.x < 6.2.1 Vulnerable Encryption (FG-IR-19-007)	medium
131320	Fortinet FortiOS < 6.0.7 / 6.2.x < 6.2.2 Multiple Vulnerabilities (FG-IR-19-184, FG-IR-19-236)	high
131283	Fortinet FortiOS < 5.6.12 / 6.x < 6.0.8 Information Disclosure MitM (FG-IR-18-100)	medium
131185	Fortinet FortiOS < 5.6.11 / 6.0.0 < 6.0.7 / 6.2.0 < 6.2.2 Information Disclosure (FG-IR-19-134)	medium
130209	FortiOS DRBG unsufficient entropy (FG-IR-19-186)	high
129782	Fortinet FortiGate 5.2.0 < 5.6.11 / 6.0.x < 6.0.5 XSS (FG-IR-19-034)	medium
128552	Fortinet FortiOS SSL VPN Directory Traversal Vulnerability (FG-IR-18-384) (Direct Check)	critical
128329	Symantec ProxySG 6.5 < 6.5.10.15 / 6.6 < 6.7.4.2 XSS and Information Disclosure Vulnerabilities (SA1472)	medium
128303	Symantec ProxySG 6.5 / 6.6 / 6.7 < 6.7.4.1 OpenSSL Denial of Service Vulnerability (SA1462)	high
128283	Check Point Gaia Operating System Open Interfaces With Default Password (sk145612)	critical
128278	Fortinet FortiOS 5.6.0 < 5.6.8 / 6.0.x < 6.0.5 multiple pre-auth XSS vulnerabilities on SSL VPN (FG-IR-18-383)	medium
128149	Check Point Gaia Operating System Administrator password truncation (sk155172)	critical
127134	Fortinet FortiGate < 6.2.1 Information Disclosure (FG-IR-19-037)	medium
127107	SonicWall SonicOS Firewall Multiple Management Vulnerabilities (URGENT/11)	critical
125889	Fortinet FortiOS < 5.2.15, 5.4.0 < 6.0.5 SSL VPN web portal Host Header Redirection (FG-IR-19-002)	medium
125888	Fortinet FortiOS 5.4.1 < 5.4.11 / 5.6.x < 5.6.9 / 6.0.x < 6.0.5 SSL VPN Security Bypass (FG-IR-18-389)	high
125887	Fortinet FortiOS < 5.6.11, 6.0.x < 6.0.5 SSL VPN Heap Buffer Overflow (FG-IR-18-388)	medium
125886	Fortinet FortiOS <= 5.4, 5.6.x < 5.6.8, 6.0.x < 6.0.5 SSL VPN Buffer Overflow (FG-IR-18-387)	high
125885	Fortinet FortiOS 5.4.6 <= 5.4.12 / 5.6.3 < 5.6.8 / 6.0.x < 6.0.5 SSL VPN Directory Traversal (FG-IR-18-384)	critical
124328	Fortinet FortiManager Unencrypted Password Vulnerability (FG-IR-18-051)	high
124324	Fortinet FortiGate <= 5.4.x / 5.6.x < 5.6.11 / 6.x < 6.2.0 Admin Privilege Escalation (FG-IR-17-053)	high
124280	Fortinet FortiGate < 5.4.11 / 5.6.x < 5.6.8 / 6.x < 6.0.3 RCE (FG-IR-18-230)	high
122855	Fortinet FortiOS 5.6.0 Remote Code Execution (FG-IR-18-018)	critical
121474	pfSense Unsupported Version Detection	critical
121356	Fortinet FortiGate < 5.6.8 / 6.x < 6.0.3 LDAP Credential Disclosure (FG-IR-18-157)	medium
119887	pfSense 2.3.x <= 2.3.5-p2 / 2.4.x < 2.4.4 Multiple Vulnerabilities (SA-18_06 / SA-18_07 / SA-18_08)	high
119886	pfSense 2.3.x < 2.3.5-p2 / 2.4.x < 2.4.3-p1 Multiple Vulnerabilities (SA-18_04 / SA-18_05)	high
119751	Fortinet FortiOS 5.4.x < 5.4.6 / 5.6.x < 5.6.1 XSS (CVE-2017-3131)	medium
119727	Squid 3.2.0.10 <= 3.2.x / 3.3.x / 3.4.x / 3.5.x <= 3.5.28 / 4.x < 4.4 Denial of Service Vulnerability (SQUID-2018:5)	medium
119726	Squid 3.1.12.1 <= 3.1.x <= 3.1.23 / 3.2.0.4 <= 3.2.x / 3.3.x / 3.4.x / 3.5.x <= 3.5.28 / 4.x < 4.4 Cross-Site Scripting Vulnerability (SQUID-2018:4)	medium
119725	Squid 3.1.12.2 <= 3.1.x <= 3.1.23 / 3.2.0.8 <= 3.2.x <= 3.2.14 / 3.3.x / 3.4.x / 3.5.x <= 3.5.27 / 4.x < 4.0.13 Denial of Service Vulnerability (SQUID-2018:3)	medium
119724	Squid 3.x < 3.5.28 / 4.x < 4.0.23 Multiple Denial of Service Vulnerabilities (SQUID-2018:1) (SQUID-2018:2)	high
119723	Squid 3.x < 3.5.18 / 4.x < 4.0.10 Multiple Denial of Service Vulnerabilities (SQUID-2016:9)	high
119722	Squid 3.2.0.11 < 3.x < 3.5.18 / 4.x < 4.0.10 Cache Poisoning Vulnerability (SQUID-2016:7)	high
119721	Squid 3.1 < 3.x < 3.5.23 / 4.x < 4.0.17 Information Disclosure Vulnerability (SQUID-2016:11)	high
119421	Fortinet FortiGate 5.2.x >= 5.2.12 / 5.4.6 - 5.4.7 / 5.6.1 - 5.6.3 Information Disclosure (FG-IR-18-325)	high

Detections

Analytics

Firewalls Family for Nessus

critical

high

medium

high

high

high

info

critical

critical

high

high

high

medium

high

medium

high

medium

medium

high

medium

critical

medium

high

critical

medium

critical

medium

critical

medium

high

medium

high

critical

high

high

high

critical

critical

medium

high

high

medium

medium

medium

medium

high

high

high

high

high