CGI abuses Family for Nessus

ID	Name	Severity
216997	GitLab 15.10 < 17.7.6 / 17.8 < 17.8.4 / 17.9 < 17.9.1 (CVE-2025-0475)	high
216939	Nagios XI < 2024R1.2.2 Multiple Vulnerabilities	medium
216938	Mattermost Server 9.11.x < 9.11.7 / 10.4.x < 10.4.2 (MMSA-2025-00414)	high
216937	Mattermost Server 9.11.x < 9.11.8 / 10.2.x < 10.2.3 / 10.3.x < 10.3.3 / 10.4.x < 10.4.2 (MMSA-2025-00430)	high
216688	Atlassian Confluence 6.10.x < 8.5.19 / 8.6.x < 9.2.1 (CONFSERVER-99216)	critical
216607	Citrix NetScaler Console (ADM) 13.1.x < 13.0.56.18 / 14.1.x < 14.1.38.53 Authenticated privilege escalation Vulnerability (CTX692579)	high
216596	Atlassian Confluence 6.10.x < 8.5.19 / 8.6.x < 9.2.1 (CONFSERVER-99215)	critical
216497	Drupal 10.3.x < 10.3.13 / 10.3.x < 10.3.13 / 10.4.x < 10.4.3 / 10.4.x < 10.4.3 / 11.x < 11.0.12 / 11.x < 11.0.12 / 11.1.x < 11.1.3 / 11.1.x < 11.1.3 Multiple Vulnerabilities (drupal-2025-02-19)	high
216413	Joomla 4.1.x < 4.4.11 / 5.0.x < 5.2.4 Joomla 5.2.4 Security & Bugfix Release (5920-joomla-5-2-4-security-bugfix-release)	medium
216268	Progress Telerik Report Server < 11.0.25.211 Cleartext Transmission	medium
216265	ManageEngine Endpoint Central 11.3.2428.x <= 11.3.2428.01, 11.3.2440.x <= 11.3.2440.0 Insecure Direct Object References	medium
216240	Zimbra Collaboration Server 10.0.x < 10.0.12, 10.1.x < 10.1.4 SQLI	high
216239	Zimbra Collaboration Server 9.0.x < 9.0.0 Patch 43, 10.0.x < 10.0.12, 10.1.x < 10.1.4 SSRF	medium
216222	GitLab 16.11 < 17.6.5 / 17.7 < 17.7.4 / 17.8 < 17.8.2 (CVE-2025-1198)	medium
216205	GitLab 17.7 < 17.7.4 / 17.8 < 17.8.2 (CVE-2025-0516)	medium
216189	GitLab 13.3 < 17.6.5 / 17.7 < 17.7.4 / 17.8 < 17.8.2 (CVE-2025-0376)	medium
216188	GitLab 15.7 < 17.6.5 / 17.7 < 17.7.4 / 17.8 < 17.8.2 (CVE-2025-1042)	high
216168	GitLab 8.3 < 17.6.5 / 17.7 < 17.7.4 / 17.8 < 17.8.2 (CVE-2025-1212)	high
216060	SolarWinds Platform 2024.4.0 < 2025.1 Multiple Vulnerabilities XSS	critical
215072	GitLab 7.14.1 < 17.3.7 / 17.4 < 17.4.4 / 17.5 < 17.5.2 (CVE-2025-1072)	medium
215063	Atlassian Confluence 3.x < 7.19.30 / 7.20.x < 8.5.18 / 8.6.x < 9.1.1 / 9.2.0 (CONFSERVER-98842)	high
215061	Atlassian Confluence 3.x < 7.19.29 / 8.0.x < 8.5.17 / 8.6.x < 8.9.8 / 9.0.1 < 9.1.1 (CONFSERVER-98484)	high
215058	Aruba ClearPass Policy Manager 6.11.x < 6.11.10 / 6.12.x < 6.12.4 Multiple Vulnerabilities	high
215005	VMware Aria Operations for Logs < 8.18.3 Multiple Vulnerabilities (VMSA-2025-0003)	critical
214948	Atlassian Confluence 6.5.x < 7.19.30 / 7.20.x < 8.5.18 / 8.6.x < 8.9.8 / 9.0.x < 9.1.1 RCE (CONFSERVER-98720)	critical
214850	ServiceNow Platform Input Validation (CVE-2024-4879) (Direct Check)	critical
214826	GitLab 10.6 < 16.9.7 / 16.10 < 16.10.5 / 16.11 < 16.11.2 (CVE-2024-1211)	high
214702	GitLab 15.0 < 17.6.4 / 17.7 < 17.7.2 / 17.8 < 17.8.0 (CVE-2025-0290)	medium
214591	SonicWall SMA 1000 Series < 12.4.3-02854 Pre-authentication Remote Command Execution (SNWLID-2025-0002)	critical
214568	GitLab 17.0 < 17.6.4 / 17.7 < 17.7.3 / 17.8 < 17.8.1 (CVE-2024-11931)	medium
214564	GitLab 17.2 < 17.6.4 / 17.7 < 17.7.3 / 17.8 < 17.8.1 (CVE-2025-0314)	medium
214537	Jenkins plugins Multiple Vulnerabilities (2025-01-22)	high
214529	Oracle Primavera Unifier (January 2025 CPU)	medium
214528	Oracle Primavera P6 Enterprise Project Portfolio Management (January 2025 CPU)	medium
214349	Mattermost Server 9.11.x < 9.11.6 / 10.0.x < 10.0.4 / 10.1.x < 10.1.4 / 10.2.x < 10.2.1 DoS (MMSA-2025-00425)	medium
214348	Mattermost Server 9.11.x < 9.11.6 (MMSA-2024-00378)	low
214347	Mattermost Server 9.11.x < 9.11.6 / 10.0.x < 10.0.4 / 10.1.x < 10.1.4 / 10.2.x < 10.2.1 DoS (MMSA-2025-00426)	medium
214346	Mattermost Server 9.11.x < 9.11.6 / 10.0.x < 10.0.4 / 10.1.x < 10.1.4 / 10.2.x < 10.2.1 DoS (MMSA-2024-00402)	medium
214345	Mattermost Server 10.0.x < 10.3 (MMSA-2024-00400)	medium
214344	Mattermost Server 9.11.x < 9.11.6 / 10.0.x < 10.0.4 / 10.1.x < 10.1.4 / 10.2.0 DoS (MMSA-2024-00396)	medium
214332	SonarSource SonarQube Server < 9.9.4 / 10.x < 10.4 Information Disclosure (CVE-2024-38460)	medium
214331	SonarSource SonarQube Server < 9.9.5 / 10.x < 10.5 GitHub Integration JWT Exfiltration (CVE-2024-47910)	high
214217	Atlassian Confluence < 7.19.18 / 8.5.x < 8.5.5 / 8.7.x < 8.7.2 / 8.8.0 (CONFSERVER-98413)	medium
214093	Joomla 3.9.x < 3.10.20 / 4.0.x < 4.4.10 / 5.0.x < 5.2.3 Joomla 5.2.3 Security & Bugfix Release (5919-joomla-5-2-3-security-bugfix-release)	high
214071	Atlassian Confluence 7.14.x < 7.19.25 / 7.20.x < 8.5.12 / 8.6.x < 8.9.4 / 9.2.0 (CONFSERVER-98680)	medium
214057	TYPO3 9.0.0 < 9.5.49 ELTS / 10.0.0 < 10.4.48 ELTS / 11.0.0 < 11.5.42 ELTS / 12.0.0 < 12.4.25 / 13.0.0 < 13.4.3 (TYPO3-CORE-SA-2025-002)	medium
214056	TYPO3 13.4.3 (TYPO3-CORE-SA-2025-001)	medium
214004	Atlassian Confluence 7.19.x < 7.19.29 / 7.20.x < 8.5.17 / 8.6.x < 8.9.8 / 9.0.x < 9.1.1 (CONFSERVER-98022)	high
214003	Atlassian Confluence 6.5.x < 7.19.22 / 7.20.x < 8.5.9 / 8.6.x < 8.9.0 (CONFSERVER-98442)	high
214002	Atlassian Confluence 7.19.x < 7.19.23 / 7.20.x < 8.5.11 / 8.6.x < 8.6.2 / 8.7.x < 8.7.2 / 8.8.x < 8.9.3 (CONFSERVER-98231)	high

Detections

Analytics

CGI abuses Family for Nessus

high

medium

high

high

critical

high

critical

high

medium

medium

medium

high

medium

medium

medium

medium

high

high

critical

medium

high

high

high

critical

critical

critical

high

medium

critical

medium

medium

high

medium

medium

medium

low

medium

medium

medium

medium

medium

high

medium

high

medium

medium

medium

high

high

high