偵測

Nessus 的 Web Servers 系列

ID名稱嚴重性
307013Apache Tomcat 10.1.22 < 10.1.54 多個弱點
high
307004Apache Tomcat 9.0.113 < 9.0.116 多個弱點
high
307003Apache Tomcat 9.0.92 < 9.0.117 多個弱點
high
307002Apache Tomcat 11.0.0.M14 < 11.0.21 多個弱點
high
307001Apache Tomcat 10.1.50 < 10.1.53 多個弱點
high
306755Apache Tomcat 11.0.15 < 11.0.20 多個弱點
critical
306733SAP NetWeaver AS Java 程式碼插入 (3719397)
medium
306732SAP NetWeaver AS ABAP 開放重新導向 (3692004)
medium
306675nginx 1.1.19 < 1.28.3 / 1.29.x < 1.29.7 ngx_http_mp4_module 中的多個弱點
high
306674nginx 0.5.13 < 1.28.3 / 1.29.x < 1.29.7 ngx_http_dav_module 中的緩衝區溢位
high
306673nginx 0.5.15 < 1.28.3 / 1.29.x < 1.29.7 NULL 指標解除參照
high
306672nginx 1.27.2 < 1.28.3 / 1.29.x < 1.29.7 OCSP 結果繞過
medium
306671nginx 0.6.27 < 1.28.3 / 1.29.x < 1.29.7 SMTP 上游插入
low
305204OpenSSL 1.1.1 < 1.1.1zg 多個弱點
critical
305203OpenSSL 1.0.2 < 1.0.2zp 多個弱點
high
305202OpenSSL 3.0.0 < 3.0.20 多個弱點
critical
305201OpenSSL 3.4.0 < 3.4.5 多個弱點
critical
305200OpenSSL 3.3.0 < 3.3.7 多個弱點
critical
304689Grafana 8.1.0 < 11.6.14 / 12.0.012.1.10 < 12.2.0 ] / [ 12.2.8 < [] / 12.3.0 < 12.3.6 / 12.4.0 < 12.4.2 DoS (CVE-2026-28375)
medium
304688Grafana 8.0.0 < 11.6.14 / 12.0.012.1.10 < 12.2.0 ] / [ 12.2.8 < [] / 12.3.0 < 12.3.6 / 12.4.0 < 12.4.2 DoS (CVE-2026-27879)
medium
304687Grafana 9.3.0 < 11.6.14 / 12.0.012.1.10 < 12.2.812.2.0 / 12.3.0 [] < [] / < 12.3.6 / 12.4.0 < 12.4.2 資訊洩漏 (CVE-2026-27877)
high
304686Grafana 12.1.0 < 12.1.10 / 12.2.0 < 12.2.8 / 12.3.0 < 12.3.6 / 12.4.0 < 12.4.2 DoS (CVE-2026-27880)
high
304671nginx 1.3.0 < 1.28.2 / 1.29.x < 1.29.5 SSL 上游插入
high
303926IBM WebSphere eXtreme Scale 8.6.1.0 < 8.6.1.6 (7267689)
medium
303560IBM WebSphere Application Server Liberty 17.0.0.3 < 26.0.0.4 權限提升 (7267345)
high
303559IBM WebSphere Application Server Liberty 17.0.0.3 < 26.0.0.4 (7267351)
high
303510IBM WebSphere Application Server Liberty 17.0.0.3 < 26.0.0.4 (7267347)
medium
303509IBM WebSphere Application Server Liberty 17.0.0.3 < 26.0.0.4 (7267362)
critical
303225Pac4J JWT < 4.5.9 / 5.x < 5.7.9 / 6.x < 6.3.3 驗證繞過 (CVE-2026-29000) (直接檢查)
critical
302501OpenSSL 3.6.0 < 3.6.2 多個弱點
critical
302500OpenSSL 3.5.0 < 3.5.6 多個弱點
high
302165SAP NetWeaver AS ABAP 缺少授權檢查 (3703856)
medium
302164SAP NetWeaver AS ABAP SSRF (3689080)
medium
302163SAP NetWeaver AS ABAP 缺少授權檢查 (3704740)
medium
302162SAP NetWeaver AS ABAP 缺少授權檢查 (3694383)
low
302113SAP NetWeaver AS Java 多個弱點 (3700960)
high
301975SAP Netweaver Visual Composer 不受限制的檔案上傳 (3084487)
high
300293IBM WebSphere Application Server Liberty 17.0.0.3 < 26.0.0.3 (7261761)
critical
300110IBM WebSphere Application Server 8.5.5.3 < 8.5.5.30 / 9.x < 9.0.5.27 / Liberty 21.0.0.3 < 26.0.0.3 DoS (7261794)
high
299410Apache Tomcat 10.1.0.M7 < 10.1.52
high
299403Apache Tomcat 11.0.0.M1 < 11.0.15 多個弱點
critical
299402Apache Tomcat 9.0.83 < 9.0.115
high
299401Apache Tomcat 10.1.0.M1 < 10.1.50 多個弱點
critical
299398Apache Tomcat 11.0.0.M1 < 11.0.18
high
299397Apache Tomcat 9.0.0.M1 < 9.0.113 多個弱點
critical
298967SAP NetWeaver AS 缺少授權檢查 (3674774)
critical
298966SAP NetWeaver AS ABAP XML 簽章包裝 (3697567)
high
298965SAP NetWeaver AS Java CRLF 插入 (3673213)
low
298964SAP NetWeaver AS ABAP 和 S/4HANA 缺少授權檢查 (3672622)
medium
298596IBM WebSphere Application Server 8.5.5.28 < 8.5.5.30 / 9.0.5.24 < 9.0.5.27 (7260217)
medium