The following enhancements and improvements are now available to Censys ASM and Search customers.
Rapid Response
The Censys Rapid Response team published information about and queries for the following issues and vulnerabilities.
- GFI KerioControl Susceptible to 1-Click RCE Vulnerability [CVE-2024-52875]
- Use the following queries to find GFI KerioControl firewalls. Not all of these are necessarily vulnerable, as specific version information may not be available.
- Censys Search query
- Censys ASM query
- Actively Exploited Unauthenticated RCE in Ivanti Connect Secure [CVE-2025-0282]
- Use the following queries to find exposed Ivanti Connect Secure instances. Not all of these are necessarily vulnerable, as specific version information may not be available.
- Censys Search query
- Censys ASM query
- Censys ASM risk query
- Oracle WebLogic Vulnerability Added to CISA KEV [CVE-2020-2883]
- Use the following queries to find Oracle WebLogic servers. Not all of these are necessarily vulnerable, as specific version information may not be available.
- Censys Search query
- Censys ASM query
- Censys ASM risk query
New Protocols
Added support for the following protocols.
| Protocol | Description | Query |
| EZVIZ | Used for EZVIZ smart home cameras. | |
| ADB (Android Debug Bridge) | The communication protocol used by the Android Debug Bridge tool. | |
| GIT | The protocol used to transfer data between a GIT client and server. | |
| SNPP (Simple Network Paging Protocol) | Used for sending and receiving paging messages. | |
| RSH | A legacy protocol used to execute commands on a remote host. |
New Fingerprints
Added the following fingerprints.
| Type | Name | Description | Query |
| software | Oracle WebLogic | This is an Oracle WebLogic Server. | |
| software | Ivanti | This web service was built or is owned by Ivanti. | |
| risk | Vulnerable Oracle WebLogic Server eCVE-2020-2883] | This Oracle WebLogic Server is vulnerable to CVE-2020-2883. | |
| risk | Vulnerable Ivanti Connect Secure Application oCVE-2025-0282 & CVE-2025-0283] | This Ivanti Connect Secure (before 22.7R2.5) application is vulnerable to CVE-2025-0282 & CVE-2025-0283. |
