Pass FreeSWITCH Detection 11 Feb 2016 None Pass Atlassian Jira 7.6.x < 8.5.4, 8.6.x < 8.6.1 Jira Gadget API DoS (JRASERVER-70808) CVE-2019-20899 25 Aug 2020 5.3 (v3) Medium Pass Atlassian Jira < 7.13.12, 8.x < 8.5.4, 8.6.x < 8.6.1 Broken Access Control (JRASERVER-70543) CVE-2019-20106 25 Aug 2020 4.3 (v3) Medium Pass TYPO3 8.x < 8.7.27 / 9.x < 9.5.8 Multiple Vulnerabilities CVE-2019-12747 20 Jul 2020 9.8 (v3) Critical Pass TYPO3 9.3 < 9.5.8 Broken Access Control (TYPO3-CORE-SA-2019-017) 20 Jul 2020 8.5 (v3) High Noise OS Identification 09 Dec 2003 None Pass Cisco HyperFlex HX Command Injection Vulnerabilities (cisco-sa-hyperflex-rce-TjjNrkpR) CVE-2021-1497 CVE-2021-1498 13 May 2021 9.8 (v3) Critical Pass uC/TCP-IP Stack - HTTP Detection 14 May 2021 None Pass Microsoft Windows 10 Version 1507 Unsupported Version Detection 09 May 2017 10 (v3) Critical Pass Juniper Junos DoS (JSA11148) CVE-2021-0257 10 May 2021 6.5 (v3) Medium Pass Juniper Junos OS DoS (JSA11137) CVE-2021-0244 11 May 2021 7.4 (v3) High Pass TYPO3 8.3 < 8.7.27 / 9.x < 9.5.8 XSS (TYPO3-CORE-SA-2019-015) CVE-2019-12748 21 Jul 2020 6.1 (v3) Medium Pass NetX TCP/IP Stack - HTTP Detection 17 May 2021 None Pass OPC UA opc.tcp Detection 17 May 2021 None Pass iLO 4 < 2.53 Remote Code Execution Vulnerability CVE-2017-12542 11 Feb 2019 10 (v3) Critical Pass Cisco Content Security Management Appliance Information Disclosure (cisco-sa-esa-wsa-sma-info-gY2AEz2H)CVE-2021-1516 21 May 2021 6.5 (v3) Medium Pass Juniper Junos Unsupported Version Detection 22 Aug 2011 10 (v3) Critical Pass iLO 3 < 1.88 / iLO 4 < 2.44 XSS Vulnerability CVE-2016-4406 14 Feb 2019 6.1 (v3) Medium Pass Adobe Experience Manager 6.2.x <= 6.2 SP1-CFP20 / 6.3.x <= 6.3.3.8 / 6.4.x < 6.4.8.2 / 6.5.x < 6.5.6.0 (APSB20-56)CVE-2020-9733 CVE-2020-9735 CVE-2020-9736 CVE-2020-9737 CVE-2020-9738 CVE-2020-9740 CVE-2020-9742 CVE-2020-9743 11 Sep 2020 7.5 (v3) High Pass Atlassian Jira 7.6.x < 8.5.4, 8.6.x < 8.7.1 Avatar Upload DoS (JRASERVER-70813) CVE-2019-20897 25 Aug 2020 6.5 (v3) Medium Pass iLO 2 < 2.27 / iLO 3 < 1.82 / iLO 4 < 2.10 Denial of Service Vulnerability CVE-2015-2106 14 Feb 2019 5.3 (v3) Medium Pass Cisco ACI Multi-Site Orchestrator (MSO) Detection 26 May 2021 None Pass Apple TV Version Detection 27 Sep 2016 None Pass Cisco IOS Software Privilege Escalation (cisco-sa-XE-FSM-Yj8qJbJc) CVE-2021-1391 29 Mar 2021 6.7 (v3) Medium Pass Sourcefire Defense Center Multiple Security Vulnerabilities 22 Aug 2013 7.5 (v2) High Pass Juniper Junos BGP Update DoS (JSA11033) CVE-2020-1646 17 Jul 2020 7.5 (v3) High Pass OpenSSL 1.1.1 < 1.1.1i Null Pointer Dereference Vulnerability CVE-2020-1971 10 Dec 2020 5.9 (v3) Medium Pass F5 Networks BIG-IQ Configuration Utility Privilege Escalation CVE-2014-3220 09 May 2014 9 (v2) High Pass Juniper Junos OS Vulnerability (JSA11139) CVE-2021-0246 15 Apr 2021 7.3 (v3) High Pass Cisco TelePresence ISDN Gateway Detection 28 Jan 2014 None Pass EMC RSA Archer 6.6 < 6.6 P8 / 6.7 < 6.7 P8 / 6.8 < 6.8 P5 / 6.9 < 6.9 SP1 P1 Stored Cross-site Scripting CVE-2021-29252 28 May 2021 5.4 (v3) Medium Pass OpenSSL 1.0.2 < 1.0.2y Multiple Vulnerabilities CVE-2021-23839 CVE-2021-23840 CVE-2021-23841 19 Feb 2021 3.7 (v3) Low Pass BACnet Protocol Detection 16 Apr 2014 None Pass Oracle Reports Servlet Detection 14 Mar 2014 None Pass CODESYS PLC Runtime Service Detection 02 Nov 2012 None Pass Junos Space Security Director Detection 24 Mar 2021 None Pass HP Printer PJL Interface Detection 01 Mar 2012 None Pass Tenable Nessus < 8.11.1 Session Expiration (TNS-2020-06) CVE-2020-5774 27 Aug 2020 7.1 (v3) High Pass IBM Spectrum Protect 8.1.x < 8.1.10.100 Information Disclosure CVE-2020-4591 03 Sep 2020 3.3 (v3) Low Pass IBM Spectrum Protect 7.1.x <= 7.1.10.000 / 8.1.x <= 8.1.10.000 DoS CVE-2020-4559 03 Sep 2020 7.5 (v3) High Pass Atlassian Confluence Command Injection (CVE-2022-26134) CVE-2022-26134 03 Jun 2022 10 (v3) Critical Pass Atlassian Jira < 7.13.16 / 8.x < 8.5.7 / 8.6.x < 8.10.2 / 8.11.x < 8.11.1 DoS (JRASERVER-71388) CVE-2020-14177 24 Sep 2020 6.5 (v3) Medium Pass Atlassian Jira < 7.13.16 / 8.x < 8.5.7 / 8.6.x < 8.12.0 User Enumeration (JRASERVER-71560) CVE-2020-14181 24 Sep 2020 5.3 (v3) Medium Pass SonicWall SonicOS Buffer Overflow (SNWLID-2021-0006) CVE-2021-20019 24 Jun 2021 7.5 (v3) High Pass Cisco IOS XE Software NAT SIP Application Layer Gateway DoS Vulnerability (cisco-sa-20180926-sip-alg)CVE-2018-0476 05 Oct 2018 5.9 (v3) Medium Pass Cisco IOS XE Software CDP Memory Leak DoS Vulnerability (cisco-sa-20180926-cdp-memleak) CVE-2018-0471 05 Oct 2018 7.4 (v3) High Pass Juniper Junos OS Vulnerability (JSA11162) CVE-2021-0271 15 Apr 2021 6.5 (v3) Medium Pass Cisco IOS XE Software Multiple Vulnerabilities in ntpd (cisco-sa-20150408-ntpd) CVE-2015-1798 CVE-2015-1799 10 Apr 2018 5.4 (v3) Medium Pass Cisco IOS XE Software DNS Forwarder Denial of Service Vulnerability (cisco-sa-20160928-dns) CVE-2016-6380 10 Apr 2018 8.1 (v3) High Pass ArubaOS-Switch DoS (ARUBA-PSA-2021-002) CVE-2021-25141 15 Jun 2021 4.4 (v3) Medium Pass Untangle NG Firewall Captive Portal RCE 15 Jul 2016 10 (v2) Critical Pass Wind River VxWorks RTOS Detection 09 Jul 2021 None Pass Oracle Primavera Unifier Multiple Vulnerabilities (Jul 2020 CPU) CVE-2020-1945 CVE-2020-9546 CVE-2020-9547 CVE-2020-9548 CVE-2020-10650 CVE-2020-10672 CVE-2020-10968 CVE-2020-10969 CVE-2020-11111 CVE-2020-11112 CVE-2020-11113 CVE-2020-11619 CVE-2020-11620 CVE-2020-1461715 Jul 2020 9.8 (v3) Critical Pass OpenTSDB HTTP Detection 09 Jul 2021 None Pass Unix Operating System Unsupported Version Detection 08 Aug 2008 10 (v3) Critical Pass ManageEngine ServiceDesk Plus < 11.2 Build 11205 RCE CVE-2021-20081 02 Jul 2021 7.2 (v3) High Pass Kaseya Virtual System Administrator (VSA) Detection 05 Jul 2021 None Pass PHP 7.2 < 7.2.34 / 7.3.x < 7.3.23 / 7.4.x < 7.4.11 Mulitiple Vulnerabilities CVE-2020-7069 CVE-2020-7070 09 Oct 2020 6.5 (v3) Medium Pass Juniper Junos OS Vulnerability (JSA11179) 14 Jul 2021 7.5 (v3) High Pass Cisco Integrated Management Controller Command Injection (cisco-sa-CIMC-CIV-pKDBe9x5) CVE-2020-3371 09 Jul 2021 8.8 (v3) High Pass Apache Storm Version Detection 28 Feb 2019 None Pass Apache Tomcat 10.0.0.M1 < 10.0.7 vulnerability CVE-2021-33037 12 Jul 2021 5.3 (v3) Medium Pass EgoSecure EndPoint Service Installed 03 Mar 2015 None Pass Remote web server screenshot 29 Mar 2013 None Pass IBM MQ Console Detection 21 May 2020 None Pass CA InoWeb Detection 11 May 2005 None Pass MySQL Default Account Credentials CVE-2012-3951 CVE-2014-3413 28 Aug 2012 9.8 (v3) Critical Pass SQL Server Version Detection 04 Mar 2019 None Pass Tenable.sc < 5.19.0 Multiple Vulnerabilities (TNS-2021-14) (deprecated) CVE-2016-10735 CVE-2017-5661 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331 CVE-2019-11041 CVE-2019-11042 CVE-2019-11043 CVE-2019-11044 CVE-2019-11045 CVE-2019-11046 CVE-2019-11047 CVE-2019-11048 CVE-2019-11049 CVE-2019-11050 CVE-2019-16168 CVE-2019-19645 CVE-2019-19646 CVE-2019-19919 CVE-2020-7059 CVE-2020-7060 CVE-2020-7061 CVE-2020-7062 CVE-2020-7063 CVE-2020-7064 CVE-2020-7065 CVE-2020-7066 CVE-2020-7067 CVE-2020-7068 CVE-2020-7069 CVE-2020-7070 CVE-2020-7071 CVE-2020-11022 CVE-2020-11655 CVE-2020-11656 CVE-2020-13434 CVE-2020-13435 CVE-2020-13630 CVE-2020-13631 CVE-2020-13632 CVE-2020-15358 CVE-2021-21702 CVE-2021-21704 CVE-2021-21705 CVE-2021-2335822 Jul 2021 7.3 (v3) High Pass Oracle Primavera Unifier (Jul 2021 CPU) CVE-2020-5258 CVE-2020-25649 CVE-2020-36189 CVE-2021-27807 CVE-2021-27906 CVE-2021-31811 22 Jul 2021 8.1 (v3) High Pass RuggedCom RuggedOS (ROS) Web-Based Admin Interface Detection 15 Jun 2012 None Pass Python Remote HTTP Detection 21 Feb 2019 None Pass HPE Systems Insight Manager RCE (CVE-2020-7200) CVE-2020-7200 22 Mar 2021 9.8 (v3) Critical Pass ManageEngine Password Manager Pro Detection 23 Jan 2015 None Pass Oracle Primavera Gateway (Apr 2020 CPU) CVE-2019-10086 CVE-2019-12402 CVE-2019-16942 CVE-2019-16943 CVE-2019-17195 CVE-2019-17531 15 Apr 2020 9.8 (v3) Critical Pass Jenkins < 2.263.3 LTS / 2.276 TOCTOU CVE-2021-21615 28 Jan 2021 5.3 (v3) Medium Pass CODESYS V2 Web Server Detection 27 Jul 2021 None Pass Juniper Junos OS Vulnerability (JSA11135) CVE-2021-0242 15 Apr 2021 6.5 (v3) Medium Pass Juniper Junos LLDP Packet DoS JSA11027 CVE-2020-1641 17 Jul 2020 6.5 (v3) Medium Pass Cisco IoT Field Network Director DoS (cisco-sa-iot-coap-dos-WTBu6YTq) CVE-2020-3162 28 Jul 2021 7.5 (v3) High Pass HP OfficeJet Printers RCE (HPSBPI03569) CVE-2017-2750 28 Nov 2017 9.8 (v3) Critical Pass TYPO3 8.x < 8.7.25 / 9.x < 9.5.6 Multiple Vulnerabilities CVE-2019-11832 21 Jul 2020 7.5 (v3) High Pass Apache Tomcat 4.x < 4.1.3 Denial of Service CVE-2002-0935 01 Oct 2010 5.3 (v3) Medium Pass Apache Tomcat 6.x < 6.0.30 / 7.x < 7.0.5 Multiple XSS CVE-2010-4172 14 Jan 2011 5.3 (v3) Medium Pass Apache Tomcat 5.5.x < 5.5.32 HTML Manager Interface XSS CVE-2011-0013 11 Feb 2011 5.3 (v3) Medium Pass Apache Tomcat 7.x < 7.0.11 @ServletSecurity Annotation Security Bypass CVE-2011-1088 CVE-2011-1419 11 Mar 2011 6.5 (v3) Medium Pass Junos Version Detection 22 Aug 2011 None Pass Oracle Database Multiple Vulnerabilities (April 2006 CPU) CVE-2006-1705 CVE-2006-1866 CVE-2006-1867 CVE-2006-1868 CVE-2006-1869 CVE-2006-1870 CVE-2006-1871 CVE-2006-1872 CVE-2006-1873 CVE-2006-1874 CVE-2006-1875 CVE-2006-1876 CVE-2006-187716 Nov 2011 10 (v2) Critical Pass Oracle Database Multiple Vulnerabilities (October 2009 CPU) CVE-2009-1007 CVE-2009-1018 CVE-2009-1964 CVE-2009-1965 CVE-2009-1971 CVE-2009-1972 CVE-2009-1979 CVE-2009-1985 CVE-2009-1991 CVE-2009-1992 CVE-2009-1993 CVE-2009-1994 CVE-2009-1995 CVE-2009-1997 CVE-2009-2000 CVE-2009-200116 Nov 2011 10 (v2) Critical Pass Oracle Database Multiple Vulnerabilities (October 2011 CPU) CVE-2011-2301 CVE-2011-2322 CVE-2011-3511 CVE-2011-3512 CVE-2011-3525 26 Oct 2011 8.5 (v2) High Pass Oracle Database Multiple Vulnerabilities (January 2012 CPU) CVE-2012-0072 CVE-2012-0082 18 Jan 2012 5.5 (v2) Medium Pass OpenBase Detection 21 Nov 2007 None Pass Harbor Web Interface Detection 17 Oct 2019 None Pass WordPress Detection 18 May 2005 None Pass Citrix CloudPlatform Unauthorized Access Vulnerability (CTX140989) CVE-2013-6398 01 Dec 2014 2.8 (v2) Low Pass Oracle Database Multiple Vulnerabilities (October 2012 CPU) CVE-2012-1751 CVE-2012-3132 CVE-2012-3137 CVE-2012-3146 CVE-2012-3151 23 Oct 2012 6.5 (v2) Medium Pass Citrix CloudPlatform Default Credentials 01 Dec 2014 7.5 (v2) High Pass Oracle Database Multiple Vulnerabilities (January 2013 CPU) CVE-2012-3219 CVE-2012-3220 CVE-2012-5062 CVE-2013-0352 CVE-2013-0353 CVE-2013-0354 CVE-2013-0355 CVE-2013-0358 CVE-2013-0372 CVE-2013-0373 CVE-2013-037418 Jan 2013 9 (v2) High Pass Citrix CloudPlatform Detection 01 Dec 2014 None Pass Apache Tomcat 6.0.x < 6.0.37 Multiple Vulnerabilities CVE-2012-3544 CVE-2013-2067 15 May 2013 5.6 (v3) Medium Pass WANem Detection 29 Oct 2012 None Pass Novell Sentinel Log Manager Authentication Bypass CVE-2012-6534 19 Nov 2012 4.3 (v2) Medium Pass Apple TV < 12 Multiple Vulnerabilities CVE-2016-1777 CVE-2018-4305 CVE-2018-4313 CVE-2018-4363 CVE-2018-5383 18 Sep 2018 5.5 (v3) Medium Pass NetIQ Privileged User Manager Detection 21 Nov 2012 None Pass EMC Data Protection Advisor Web UI Detection 20 Feb 2013 None Pass Oracle Database Multiple Vulnerabilities (July 2014 CPU) CVE-2013-3751 CVE-2013-3774 CVE-2014-4236 CVE-2014-4237 CVE-2014-4245 16 Jul 2014 9 (v2) High Pass Oracle Application Express (Apex) Version Detection 20 Feb 2013 None Pass Oracle Application Express (Apex) CVE-2010-0892 CVE-2010-0892 20 Feb 2013 4.3 (v2) Medium Pass Crafted IP Option Vulnerability (cisco-sa-20070124-crafted-ip-option) CVE-2007-0480 14 Dec 2013 10 (v2) Critical Pass Cisco IOS XR Version 14 Dec 2013 None Pass OpenSMTPD TLS Blocking Socket Remote DoS CVE-2013-2125 24 May 2013 5 (v2) Medium Pass Information Leakage Using IPv6 Routing Header in Cisco IOS XR (cisco-sa-20070808-IOS-IPv6-leak) CVE-2007-4285 14 Dec 2013 9 (v2) High 91
RELAYTO Penetration Test Results Page 90 Page 92