One of the most widely used scanners is #Nessus, and many of its plugins have terrible specificity (they are prone to false positives).

One plugin I had to deal with today is plugin 137702. It finds systems vulnerable to #Ripple20, a set of 19 vulnerabilities in the Treck TCP/IP stack discovered in 2020. These vulnerabilities are a serious security risk if present, but should have been fixed in most systems by now.

2/ 🧵