Nessus 的 Web Servers 系列

ID名稱嚴重性
152543Microsoft Azure CycleCloud 權限提升 (CVE-2021-33762)
high
152542Azure CycleCloud Web UI 偵測
info
152541Microsoft Azure CycleCloud 權限提升 (CVE-2021-36943)
high
152484GitLab Web UI Detection
info
150753SAP NetWeaver AS ABAP Cross-Site Scripting (XSS) (June 2021)
medium
150719SAP NetWeaver AS ABAP 命令插入 (2021 年 6 月)
medium
150718SAP NetWeaver AS JAVA Missing XML Validation (3053066)
medium
150717SAP NetWeaver AS ABAP XSS (June 2021)
medium
150694SAP NetWeaver AS ABAP Missing Authorization (3002517)
medium
150417SAP NetWeaver AS ABAP 不當驗證 (2021 年 6 月)
critical
150280Apache 2.4.x < 2.4.47 多個弱點
critical
150244Apache 2.4.x < 2.4.48 弱點
high
150154nginx 0.6.x < 1.20.1 1 位元組記憶體覆寫 RCE
critical
149848SAP NetWeaver AS ABAP 命令插入 (2021 年 5 月)
medium
148850IBM WebSphere Application Server 8.0.0.0 <= 8.0.0.15 / 8.5.0.0 <= 8.5.5.19 / 9.0.0.0 <= 9.0.5.7 XXE (CVE-2021-20453)
high
148573SAP NetWeaver AS Java 和 AS ABAP 多個弱點 (2021 年 4 月)
medium
148405Apache Tomcat 7.0.0 < 7.0.107 資訊洩漏
medium
148402OpenSSL 1.1.1 < 1.1.1j 多個弱點
high
148400SAP NetWeaver AS Java 監控目錄遊走 (2234971)
high
148399SAP NetWeaver AS Java Invoker Servlet 程式碼執行 (1445998)
critical
148241Apache Druid < 0.20.1 RCE (直接檢查)
high
148240Apache Druid 偵測
info
148239Apache OFBiz 遠端程式碼執行 (CVE-2021-26295)
critical
148182Citrix SD-WAN Center 遠端程式碼執行 (直接檢查)
critical
148125OpenSSL 1.1.1 < 1.1.1k 多個弱點
high
147961SAP NetWeaver AS JAVA 反向索引標籤劫持 (2976947)
medium
147870SAP NetWeaver AS JAVA 缺少授權檢查 (3022422)
high
147164Apache Tomcat 9.0.0.M1 < 9.0.43 多個弱點
high
147163Apache Tomcat 7.0.0 < 7.0.108 RCE
high
147019Apache Tomcat 8.5.0 < 8.5.63 多個弱點
high
146861Liferay Portal 遠端程式碼執行 (直接檢查)
critical
146860IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x <= 8.5.5.19 / 9.0.x <= 9.0.5.6 XXE (6413709)
high
146859IBM WebSphere Application Server 8.0.0.0 <= 8.0.0.15 / 8.5.0.0 <= 8.5.5.19 / 9.0.0.0 <= 9.0.5.6 目錄遊走 (CVE-2021-20354)
high
146591OpenSSL 1.0.2 < 1.0.2y 多個弱點
low
146489SaltStack 未經驗證的 RCE (直接檢查)
critical
146451IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x <= 8.5.5.18 / 9.0.x <= 9.0.5.5 目錄遊走 (CVE-2020-4782)
medium
146374OpenSSL 1.0.2 < 1.0.2w 資訊洩漏
low
146314Apache Flink 本機檔案包含弱點 (直接檢查)
high
146313Apache Flink Web UI 偵測
info
146273SAP BusinessObjects Business Intelligence 平台 Web 偵測。
info
146272SAP BusinessObjects Business Intelligence 平台 SSRF 弱點 (直接檢查)
medium
145705SAP NetWeaver AS Java 和 AS ABAP 多個弱點 (2021 年 1 月)
high
145535IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x <= 8.5.5.18 / 9.0.x <= 9.0.5.6 XXE (6408244)
high
145069IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x <= 8.5.5.18 / 9.0.x <= 9.0.5.5 資訊洩漏 (6339255)
low
145061IBM HTTP Server 7.0.0.0 <= 7.0.0.41 / 8.0.0.0 < 8.0.0.13 / 8.5.0.0 < 8.5.5.11 / 9.0.0.0 < 9.0.0.2 多個弱點 (548231)
critical
145045IBM WebSphere eXtreme Scale Liberty Deployment 8.6.1.x < 8.6.1.4 (6397682)
medium
145032IBM WebSphere eXtreme Scale (Linux)
info
144969Apache Unomi RCE (直接檢查)
critical
144968Apache Unomi 偵測。
info
144780IBM HTTP Server 7.0.0.0 <= 7.0.0.43 / 8.0.0.0 <= 8.0.0.14 / 8.5.0.0 < 8.5.5.14 / 9.0.0.0 < 9.0.0.8 多個弱點 (569295)
high