RELAYTO Penetration Test Results (45/101)

Pass Oracle Primavera P6 Enterprise Project Portfolio Management (EPPM) Multiple Vulnerabilities (July 2017 CPU)CVE-2016-5019 CVE-2017-10038 CVE-2017-10046 CVE-2017-10131 CVE-2017-10160 21 Jul 2017 9.8 (v3) Critical Pass Apache Shiro Default Cipher Key (CVE-2016-4437) CVE-2016-4437 30 Mar 2022 8.1 (v3) High Pass Oracle Primavera Uniﬁer Multiple Vulnerabilities (July 2017 CPU) CVE-2017-10149 CVE-2017-10150 21 Jul 2017 4.8 (v3) Medium Pass Zabbix 3.2.x < 3.2.7 Multiple Vulnerabilities 15 Aug 2017 9.8 (v3) Critical Pass H3C / HPE Intelligent Management Center PLAT < 7.3 E0506 Multiple Vulnerabilities CVE-2017-12487 CVE-2017-12488 CVE-2017-12489 CVE-2017-12490 CVE-2017-12491 CVE-2017-12492 CVE-2017-12493 CVE-2017-12494 CVE-2017-12495 CVE-2017-12496 CVE-2017-12497 CVE-2017-12498 CVE-2017-12499 CVE-2017-12500 CVE-2017-12501 CVE-2017-12502 CVE-2017-12503 CVE-2017-12504 CVE-2017-12505 CVE-2017-12506 CVE-2017-12507 CVE-2017-12508 CVE-2017-12509 CVE-2017-12510 CVE-2017-12511 CVE-2017-12512 CVE-2017-12513 CVE-2017-12514 CVE-2017-12515 CVE-2017-12516 CVE-2017-12517 CVE-2017-12518 CVE-2017-12519 CVE-2017-12520 CVE-2017-12521 CVE-2017-12522 CVE-2017-12523 CVE-2017-12524 CVE-2017-12525 CVE-2017-12526 CVE-2017-12527 CVE-2017-12528 CVE-2017-12529 CVE-2017-12530 CVE-2017-12531 CVE-2017-12532 CVE-2017-12533 CVE-2017-12534 CVE-2017-12535 CVE-2017-12536 CVE-2017-12537 CVE-2017-12538 CVE-2017-12539 CVE-2017-12540 CVE-2017-1254115 Aug 2017 8.8 (v3) High Pass Default Password '5SaP9I26' for 'remotessh' Account CVE-2017-14115 01 Sep 2017 8.1 (v3) High Pass Apache Struts 2.3.x Struts 1 plugin RCE (remote) CVE-2017-9791 01 Sep 2017 9.8 (v3) Critical Pass HP System Management Homepage < 7.6.1 Multiple Vulnerabilities (HPSBMU03753) CVE-2016-8743 CVE-2017-12544 CVE-2017-12545 CVE-2017-12546 CVE-2017-12547 CVE-2017-12548 CVE-2017-12549 CVE-2017-12550 CVE-2017-12551 CVE-2017-12552 CVE-2017-1255328 Sep 2017 5.6 (v3) Medium Pass Cisco IOS XE Software Interface Queue Wedge DoS (cisco-sa-quewedge-69BsHUBW) CVE-2021-1621 18 Oct 2021 7.4 (v3) High Pass Wind River VxWorks <= 6.8 RCE CVE-2021-29999 27 Oct 2021 9.8 (v3) Critical Pass Citrix Gateway HTTP Detection 30 Mar 2022 None Pass H3C / HPE Intelligent Management Center PLAT <= 7.3 E0501P01 Multiple Vulnerabilities CVE-2017-12555 11 Oct 2017 6.5 (v3) Medium Pass H3C / HPE Intelligent Management Center PLAT < 7.3 E0506P03 Multiple RCE CVE-2017-8958 CVE-2017-8961 CVE-2017-8962 CVE-2017-8963 CVE-2017-8964 CVE-2017-8965 CVE-2017-8966 CVE-2017-8967 11 Oct 2017 8.8 (v3) High Pass MikroTik RouterOS < 6.39.3 / 6.40.4 / 6.41rc (KRACK) CVE-2017-13077 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13082 CVE-2017-13083 CVE-2017-13084 CVE-2017-13085 CVE-2017-13086 CVE-2017-1308716 Oct 2017 8.1 (v3) High Pass IBM OpenAdmin Tool welcomeService.php Remote Code Execution CVE-2017-1092 23 Oct 2017 9.8 (v3) Critical Pass PHP 7.4.x < 7.4.24 Arbitrary File Write CVE-2021-21706 28 Oct 2021 6.5 (v3) Medium Pass Nacos < 1.4.1 Authentication Bypass (CVE-2021-29441) CVE-2021-29441 26 Oct 2021 9.8 (v3) Critical Pass Apache HTTP Server 2.4.49 & 2.4.50 Path Traversal (CVE-2021-42013) CVE-2021-42013 18 Nov 2021 9.8 (v3) Critical Pass Liferay Portal 6.2.x < 6.2.5 / 7.0.x < 7.0.6 / 7.1.x < 7.1.3 / 7.2.x < 7.2.1 RCE CVE-2020-7961 23 Nov 2021 9.8 (v3) Critical Pass CODESYS V3 Web Server Heap-based Buﬀer Overﬂow (CVE-2021-33485) CVE-2021-33485 08 Dec 2021 9.8 (v3) Critical Pass Jenkins < 2.73.3 / 2.89 Multiple Vulnerabilities CVE-2017-1000391 CVE-2017-1000392 16 Nov 2017 7.3 (v3) High Pass Vanilla Forums Detection 17 Nov 2017 None Pass Zabbix 3.0.x < 3.0.13 / 3.2.x < 3.2.10 / 3.4.x < 3.4.4 Multiple Vulnerabilities 17 Nov 2017 7.3 (v3) High Pass Default Password (CenturyL1nk) for 'admin' Account 01 Dec 2017 9.8 (v3) Critical Pass Microsoft Windows 10 Version 1909 Unsupported Version Detection 11 May 2021 10 (v3) Critical Pass PHP 5.6.x < 5.6.29 Multiple Vulnerabilities CVE-2016-9935 15 Dec 2016 9.8 (v3) Critical Pass Apple TV < 14.6 Multiple Vulnerabilities CVE-2021-21779 CVE-2021-30663 CVE-2021-30665 CVE-2021-30677 CVE-2021-30682 CVE-2021-30685 CVE-2021-30686 CVE-2021-30687 CVE-2021-30689 CVE-2021-30697 CVE-2021-30700 CVE-2021-30701 CVE-2021-30704 CVE-2021-30705 CVE-2021-30707 CVE-2021-30710 CVE-2021-30715 CVE-2021-30720 CVE-2021-30724 CVE-2021-30727 CVE-2021-30734 CVE-2021-30736 CVE-2021-30737 CVE-2021-30740 CVE-2021-30744 CVE-2021-3074927 May 2021 8.8 (v3) High Pass Cisco ADE-OS Local File Inclusion (cisco-sa-ade-xcvAQEOZ) CVE-2021-1306 27 May 2021 3.4 (v3) Low Pass ForgeRock Access Management < 7.0 RCE CVE-2021-35464 02 Jul 2021 9.8 (v3) Critical Pass Cisco ASA Software and FTD Software Web Services Interface XSS (cisco-sa-asaftd-xss-multiple-FCB3vPZe) (DirCVE-2020-3580ect Check) 07 Jul 2021 6.1 (v3) Medium Pass PHP 7.0.x < 7.0.14 Multiple Vulnerabilities CVE-2016-9935 CVE-2016-9936 15 Dec 2016 9.8 (v3) Critical Pass NetIQ Sentinel Java Object Deserialization RCE 13 Jan 2017 9.8 (v3) Critical Pass Buﬀalo Routers Multiple Vulnerabilities (TRA-2021-13) CVE-2021-20090 CVE-2021-20091 CVE-2021-20092 04 Aug 2021 9.8 (v3) Critical Pass Apache Struts 2.3.5 - 2.3.31 / 2.5.x < 2.5.10.1 Jakarta Multipart Parser RCE (S2-045) (S2-046) CVE-2017-5638 07 Mar 2017 10 (v3) Critical Pass Cisco IOS XR Software Cisco Discovery Protocol Remote Code Execution Vulnerability (cisco-sa-20200205-iosxrCVE-2020-3118-cdp-rce) 10 Feb 2020 8.8 (v3) High Pass Microsoft Windows 10 Version 1803 Unsupported Version Detection 24 Jun 2020 10 (v3) Critical Pass ManageEngine ServiceDesk Plus < 10.0 Build 10012 Arbitrary File Upload CVE-2019-8394 09 Dec 2020 6.5 (v3) Medium Pass ManageEngine ADSelfService Plus < build 6114 REST API Authentication Bypass CVE-2021-40539 08 Sep 2021 9.8 (v3) Critical Pass Cisco IOS XE Software SD WAN Arbitrary File Overwrite (cisco-sa-sd-wan-GjR5pGOm) CVE-2021-1612 22 Sep 2021 7.1 (v3) High Pass Juniper Junos OS Vulnerability (JSA11225) CVE-2021-31363 13 Oct 2021 6.5 (v3) Medium Pass Juniper Junos OS Vulnerability (JSA11231) CVE-2021-31369 13 Oct 2021 5.3 (v3) Medium Pass Serv-U FTP Server < 15.3 Improper Input Validation CVE-2021-35247 20 Jan 2022 5.3 (v3) Medium Pass Cisco IOS XE Software Multiple Products CLI Command Injection (cisco-sa-cli-cmdinj-4MttWZPB) CVE-2022-20655 20 Jan 2022 8.8 (v3) High Pass Juniper Junos OS Multiple Vulnerabilities (JSA11222) CVE-2021-31359 CVE-2021-31360 13 Oct 2021 7.8 (v3) High Pass Oracle Primavera P6 Enterprise Project Portfolio Management (Jan 2022 CPU) CVE-2021-2351 CVE-2021-44832 20 Jan 2022 7.5 (v3) High Pass Oracle Primavera Gateway (Jan 2022 CPU) CVE-2021-44832 20 Jan 2022 6.6 (v3) Medium Pass PHP 7.4.x < 7.4.25 CVE-2021-21703 22 Oct 2021 7 (v3) High Pass PHP 7.3.x < 7.3.32 CVE-2021-21703 28 Oct 2021 7 (v3) High Pass Advantech WebAccess < 7.2-2013.11.14 Multiple Vulnerabilities CVE-2014-0763 CVE-2014-0764 CVE-2014-0765 CVE-2014-0766 CVE-2014-0767 CVE-2014-0768 CVE-2014-0770 CVE-2014-0771 CVE-2014-0772 CVE-2014-077317 Aug 2015 7.5 (v2) High Pass Tenable Nessus <= 8.15.2 Local Privilege Escalation (TNS-2021-18) CVE-2021-20135 01 Nov 2021 6.7 (v3) Medium Pass Cisco Uniﬁed Communications Manager Path Traversal (cisco-sa-cucm-path-trav-dKCvktvO) CVE-2021-34701 05 Nov 2021 4.3 (v3) Medium Pass Cisco Small Business RV Series Routers Command Injection (cisco-sa-sbrv-cmdinjection-Z5cWFdK) CVE-2021-40120 05 Nov 2021 7.2 (v3) High Pass ManageEngine ADSelfServicePlus Authentication Bypass (CVE-2021-40539) CVE-2021-40539 08 Nov 2021 9.8 (v3) Critical Pass Nagios XI < 5.6.6 RCE CVE-2019-15949 05 Nov 2021 8.8 (v3) High Pass Sonatype Nexus Repository Manager 3.x < 3.21.2 RCE CVE-2020-10199 08 Nov 2021 8.8 (v3) High Pass Checkbox Survey Web Detection 16 May 2022 None Pass Buﬀalo Router Path Traversal (CVE-2021-20090) CVE-2021-20090 09 Nov 2021 9.8 (v3) Critical Pass Cisco Prime Infrastructure Stored XSS (cisco-sa-pi-epnm-xss-U2JK537j) CVE-2021-34784 10 Nov 2021 5.4 (v3) Medium Pass Advantech WebAccess < 8.1-2015.12.30 Multiple Vulnerabilities CVE-2015-3943 CVE-2015-3946 CVE-2015-3947 CVE-2015-3948 CVE-2015-6467 CVE-2016-0851 CVE-2016-0852 CVE-2016-0853 CVE-2016-0854 CVE-2016-0855 CVE-2016-0856 CVE-2016-0857 CVE-2016-0858 CVE-2016-0859 CVE-2016-086003 Mar 2016 7.5 (v3) High Pass WMI IIS ISAPI Extension Enumeration 20 Dec 2013 None Pass Zimbra Collaboration Server Web Detection 19 Feb 2014 None Pass Canon PIXMA Printer HTTP Detection 07 Apr 2014 None Pass Citrix ADC and Citrix NetScaler Gateway Multiple Vulnerabilities (CTX330728) CVE-2021-22955 CVE-2021-22956 18 Nov 2021 7.5 (v3) High Pass Jenkins Enterprise and Operations Center < 2.249.31.0.1 / 2.277.3.1 DoS (CloudBees Security Advisory 2021-04-20)CVE-2021-28165 18 Nov 2021 7.5 (v3) High Pass Jenkins Enterprise and Operations Center < 2.222.43.0.4 / 2.249.30.0.4 / 2.277.2.3 Multiple Vulnerabilities (CloudBees Security Advisory 2021-04-07)CVE-2021-21639 CVE-2021-21640 CVE-2021-21641 CVE-2021-22510 CVE-2021-22511 CVE-2021-22512 CVE-2021-22513 18 Nov 2021 6.5 (v3) Medium Pass Advantech WebAccess Stored Cross-Site Scripting CVE-2013-2299 14 Apr 2014 3.5 (v2) Low Pass Jenkins Enterprise and Operations Center < 2.249.31.0.1-2 / 2.277.3.1-2 Multiple Vulnerabilities (CloudBees Security Advisory 2021-04-21)CVE-2021-21642 CVE-2021-21643 CVE-2021-21644 CVE-2021-21645 CVE-2021-21646 CVE-2021-21647 19 Nov 2021 8.8 (v3) High Pass Jenkins Enterprise and Operations Center < 2.277.43.0.2 / 2.303.3.3 Multiple Vulnerabilities (CloudBees Security Advisory 2021-11-04)CVE-2021-21685 CVE-2021-21686 CVE-2021-21687 CVE-2021-21688 CVE-2021-21689 CVE-2021-21690 CVE-2021-21691 CVE-2021-21692 CVE-2021-21693 CVE-2021-21694 CVE-2021-21695 CVE-2021-21696 CVE-2021-21697 CVE-2021-2169819 Nov 2021 9.8 (v3) Critical Pass Jenkins Enterprise and Operations Center < 2.222.43.0.2 rev3 / 2.249.30.0.2 rev3 / 2.263.4.1 rev2 Multiple VCVE-2021-21616 CVE-2021-21617 CVE-2021-21618 CVE-2021-21619 CVE-2021-21620 CVE-2021-21621 CVE-2021-21622ulnerabilities (CloudBees Security Advisory 2021-02-24) 19 Nov 2021 8.8 (v3) High Pass Advantech WebAccess Web Administration Interface Detection 14 Apr 2014 None Pass Jenkins Enterprise and Operations Center < 2.222.43.0.3 rev2 / 2.249.30.0.3 rev2 / 2.277.1.2 rev2 Multiple VCVE-2021-21623 CVE-2021-21624 CVE-2021-21625 CVE-2021-21626 CVE-2021-21627ulnerabilities (CloudBees Security Advisory 2021-03-18) 19 Nov 2021 8.8 (v3) High Pass PHP 5.6.x < 5.6.30 Multiple DoS CVE-2016-10158 CVE-2016-10159 CVE-2016-10160 CVE-2016-10161 CVE-2016-10167 CVE-2016-10168 CVE-2017-11147 26 Jan 2017 9.8 (v3) Critical Pass PHP 7.0.x < 7.0.15 Multiple Vulnerabilities CVE-2015-2787 CVE-2016-7479 CVE-2016-10158 CVE-2016-10159 CVE-2016-10160 CVE-2016-10161 CVE-2016-10162 CVE-2016-10167 CVE-2016-10168 CVE-2017-5340 CVE-2017-1114726 Jan 2017 9.8 (v3) Critical Pass Cisco Secure ACS Unauthorized Password Change CVE-2011-0951 11 Apr 2013 5 (v2) Medium Pass Cisco Small Business RV Series Routers RCE (cisco-sa-sbrv-rce-OYLQbL9u) CVE-2022-20753 12 May 2022 7.2 (v3) High Pass IPMI Cipher Suite Zero Authentication Bypass CVE-2013-4782 CVE-2013-4783 CVE-2013-4784 CVE-2014-2955 16 Jul 2013 10 (v3) Critical Pass JBoss Enterprise Application Platform '/jmx-console' Authentication Bypass CVE-2010-0738 08 Apr 2011 5 (v2) Medium Pass Samsung Data Management Server Default Password (rkwjsdusrnth) for 'root' Account 11 May 2011 10 (v2) Critical Pass MS11-048: Vulnerability in SMB Server Could Allow Denial of Service (2536275) (remote check) CVE-2011-1267 21 Jun 2011 7.5 (v3) High Pass Modicon Quantum TFTP Arbitrary File Upload 19 Jan 2012 9 (v2) High Pass PHP 7.1.x < 7.1.1 Multiple Vulnerabilities CVE-2016-7479 CVE-2016-10158 CVE-2016-10161 CVE-2016-10162 CVE-2016-10167 CVE-2016-10168 CVE-2017-5340 CVE-2017-1114726 Jan 2017 9.8 (v3) Critical Pass Tenable Nessus 6.x < 6.9.3 Multiple Stored XSS CVE-2017-5179 27 Jan 2017 5.4 (v3) Medium Pass PHP 7.0.x < 7.0.16 Multiple Vulnerabilities 23 Feb 2017 9.8 (v3) Critical Pass JBoss Enterprise Application Platform '/web-console' Authentication Bypass CVE-2010-1428 29 Apr 2010 5 (v2) Medium Pass Cisco Secure Access Control Server UCP service Detection 19 Aug 2008 None Pass PHP 7.1.x < 7.1.2 Multiple Vulnerabilities 23 Feb 2017 9.8 (v3) Critical Pass Modicon Modbus/TCP UnityPro Programming Function Code Access 28 Feb 2017 6.5 (v3) Medium Pass IBM Spectrum Protect Server 7.1.1.0 - 7.1.7.0 SELECT Command RCE CVE-2016-8998 03 Mar 2017 7.2 (v3) High Pass Jenkins < 2.44 / 2.32.x < 2.32.2, Jenkins Operations Center < 1.625.22.1 / 2.7.22.0.1 / 2.32.2.1, and Jenkins Enterprise < 1.651.22.1 / 2.7.22.0.1 / 2.32.2.1 Multiple VCVE-2011-4969 CVE-2015-0886 CVE-2016-9887 CVE-2017-2598 CVE-2017-2599 CVE-2017-2600 CVE-2017-2601 CVE-2017-2602 CVE-2017-2603 CVE-2017-2604 CVE-2017-2606 CVE-2017-2607 CVE-2017-2608 CVE-2017-2609 CVE-2017-2610 CVE-2017-2611 CVE-2017-2612 CVE-2017-2613 CVE-2017-1000362ulnerabilities 08 Mar 2017 8.8 (v3) High Pass HPE Intelligent Management Center 7.2 E0403P06 Multiple Vulnerabilities CVE-2017-5791 CVE-2017-5793 CVE-2017-5794 CVE-2017-5795 28 Mar 2017 9.8 (v3) Critical Pass Default Password 'adminIWSS85' for 'root' Account CVE-1999-0502 07 Apr 2017 9.8 (v3) Critical Pass Apache ActiveMQ 5.x < 5.14.5 ControlCommand DoS CVE-2015-7559 25 Apr 2017 4.9 (v3) Medium Pass H3C / HPE Intelligent Management Center RMI Java Object Deserialization RCE CVE-2017-5792 28 Apr 2017 9.8 (v3) Critical Pass Spring Cloud Function SPEL Expression Injection (direct check) CVE-2022-22963 31 Mar 2022 9.8 (v3) Critical Pass Tenable Nessus 10.x < 10.1.2 / 8.x < 8.15.4 Third-Party Vulnerability (TNS-2022-06) CVE-2022-0778 31 Mar 2022 7.5 (v3) High Pass Cisco Security Manager Java Object Deserialization RCE (CSCux34671) CVE-2015-6420 02 May 2017 9.8 (v3) Critical Pass DNN (DotNetNuke) 6.2.x < 9.0.2 User Proﬁle Information Disclosure 01 May 2017 5.3 (v3) Medium Pass MikroTik RouterOS HTTP Server Arbitrary Write RCE (ChimayRed) 01 May 2017 9.8 (v3) Critical Pass PHP 5.5.x < 5.5.33 Multiple Vulnerabilities CVE-2016-3141 CVE-2016-3142 17 Mar 2016 9.8 (v3) Critical Pass Cisco Small Business RV Series Routers Command Injection Vulnerability (cisco-sa-smb-rv-cmd-inj-8Pv9JMJD)CVE-2022-20799 CVE-2022-20801 12 May 2022 7.2 (v3) High Pass Apache Tomcat 9.0.0.M1 < 9.0.21 vulnerability CVE-2022-25762 13 May 2022 8.6 (v3) High Pass PHP 8.0.x < 8.0.12 CVE-2021-21703 21 Oct 2021 7 (v3) High Pass Oracle Primavera Gateway (Oct 2021 CPU) CVE-2021-2351 CVE-2021-23337 CVE-2021-29425 CVE-2021-36090 CVE-2021-36374 21 Oct 2021 7.5 (v3) High Pass Trend Micro OﬃceScan Client Version 22 Jun 2006 None Pass Advantech WebAccess webvrpcs.exe 0x138bd IOCTL RCE CVE-2018-7499 03 May 2019 9.8 (v3) Critical Pass Microsoft Windows SMB NULL Session Authentication CVE-1999-0519 CVE-1999-0520 CVE-2002-1117 04 Oct 2007 7.3 (v3) High Pass Apache Pluto Web Interface Detection 18 Jul 2019 None Pass Apache Niﬁ Web Interface Detection 14 Aug 2019 None Pass macOS 10.14.3 Supplemental Update CVE-2019-6223 CVE-2019-7286 CVE-2019-7288 01 Mar 2019 9.8 (v3) Critical Pass Atlassian JIRA < 8.5.15 / 8.6.x < 8.13.7 / 8.14.x < 8.17.0 Unauth User Enum (JRASERVER-71559) CVE-2020-36289 13 Oct 2021 5.3 (v3) Medium Pass Juniper Junos OS Vulnerability (JSA11220) CVE-2021-31355 13 Oct 2021 5.4 (v3) Medium Pass Juniper Junos OS Vulnerability (JSA11245) CVE-2020-25659 13 Oct 2021 5.9 (v3) Medium 45

RELAYTO Penetration Test Results - Page 45

RELAYTO Penetration Test Results Page 44 Page 46