Nessus 的 Web Servers 系列

ID名稱嚴重性
170589Azure CycleCloud 的安全性更新 (2022 年 11 月)
high
170268Oracle HTTP Server (2023 年 1 月 CPU)
critical
170113Apache 2.4.x < 2.4.55 多個弱點
critical
170025SAP NetWeaver AS ABAP 擷取重播弱點 (3089413)
critical
170024SAP NetWeaver AS ABAP XSS (3283283)
medium
170023SAP NetWeaver AS Java 不當存取控制 (3268093)
critical
169954SAP NetWeaver AS ABAP 缺少授權 (3145997)
medium
169490PlaySMS < 1.4.3 RCE (CVE-2020-8644)
critical
169489PlaySMS 偵測
info
169460Apache Tomcat 10.1.0.M1 < 10.1.2
high
169459Apache Tomcat 9.0.40 < 9.0.69
high
169458Apache Tomcat 8.5.0 < 8.5.84
high
169455SAP NetWeaver AS Java XSS (3262544)
medium
169454SAP NetWeaver AS ABAP URL 重新導向 (3258950、2872782)
medium
168829OpenSSL 3.0.0 < 3.0.8 DoS
high
167284SAP NetWeaver AS ABAP URL 重新導向 (3251202)
medium
167283SAP NetWeaver AS ABAP 多個弱點 (3256571)
high
166906Apache Tomcat 9.0.0-M1 < 9.0.68 要求走私弱點
high
166807Apache Tomcat 8.5.x < 8.5.83 要求走私弱點
high
166806Apache Tomcat 10.0.0.M1 < 10.0.27 弱點
high
166786Apache Tomcat 10.1.0.M1 < 10.1.1 弱點
high
166773OpenSSL 3.0.0 < 3.0.7 多個弱點
high
166545nginx 1.1.x < 1.23.2 / 1.0.x < 1.22.1 記憶體洩漏
high
166047OpenSSL 3.0.0 < 3.0.6 弱點
high
165588IBM WebSphere Application SSRF (6824179)
medium
165511Apache Tomcat 10.1.0.M1 < 10.1.0.M14 弱點
low
165086IBM WebSphere eXtreme Scale 8.6.1.0 < 8.6.1.5 (6598349)
medium
164822SAP NetWeaver AS ABAP 權限提升 (3194674)
medium
164821SAP NetWeaver AS ABAP 缺少授權 (3165801)
high
164820SAP NetWeaver AS ABAP SSRF (3194674)
medium
164809IBM WebSphere Application Server Liberty 17.0.0.3 < 22.0.0.8 (6602039)
high
164505Zebra ZTC 印表機 Web 介面預設管理員密碼
critical
164086Intel 主動管理技術 (AMT) 多個弱點 (INTEL-SA-00709) (遠端檢查)
critical
164006Microsoft Open Management Infrastructure 的安全性更新 (2022 年 8 月)
high
163771IBM WebSphere Application Server Liberty 17.0.0.3 <= 22.0.0.7 身分偽造弱點 (6602015)
high
163589Metabase LFI (CVE-2021-41277)
high
163499Eyes of Network API 認證保護不充分 (CVE-2020-8657)
critical
163498EyesOfNetwork HTTP API 偵測
info
163249IBM WebSphere Application Server 8.5.x < 8.5.5.22 / 9.0.x < 9.0.5.13 XSS
medium
162785SAP NetWeaver AS Java 反向索引標籤劫持 (2965315)
medium
162728SAP NetWeaver AS ABAP 資訊洩漏 (2963137)
medium
162721OpenSSL 1.1.1 < 1.1.1q 弱點
medium
162720OpenSSL 3.0.0 < 3.0.5 多個弱點
critical
162673OpenSSL 3.0.4 < 3.0.5-dev 弱點
critical
162502Apache Tomcat 8.5.50 < 8.5.82 弱點
medium
162500Apache Tomcat 10.1.0.M1 < 10.1.0.M17 弱點
medium
162499Apache Tomcat 10.0.0.M1 < 10.0.23 弱點
medium
162498Apache Tomcat 9.0.30 < 9.0.65 弱點
medium
162420OpenSSL 1.1.1 < 1.1.1p 弱點
critical
162419OpenSSL 1.0.2 < 1.0.2zf 弱點
critical