偵測

Nessus 的 Web Servers 系列

ID名稱嚴重性
144070IBM HTTP Server 7.0.0.0 <= 7.0.0.45 / 8.0.0.0 <= 8.0.0.15 / 8.5.0.0 < 8.5.5.18 / 9.0.0.0 < 9.0.5.4 多個弱點 (6191631)
medium
144063IBM HTTP Server 9.0.0.0 < 9.0.0.3 偽造 (6324789)
medium
144054Apache Tomcat 8.5.0 < 8.5.60 多個弱點
high
144053OpenSSL 1.0.2 < 1.0.2x 弱點
medium
144050Apache Tomcat 9.0.0.M1 < 9.0.40 多個弱點
high
144047OpenSSL 1.1.1 < 1.1.1i 弱點
medium
143441已安裝 IBM HTTP Server (Linux)
info
143265已安裝 IBM WebSphere Application Server (Linux)
info
143152Intel 主動管理技術 (AMT) 多個弱點 (INTEL-SA-00391) (遠端檢查)
critical
142960HTTPS 伺服器缺少 HSTS (RFC 6797)
medium
142640Apache HTTP Server 網站列舉
info
142594Oracle WebLogic Server RCE (CVE-2020-14882)
critical
142224IBM WebSphere Application Server 6.1.0.x <= 6.1.0.47 / 7.0.0.x < 7.0.0.39 / 8.0.0.x < 8.0.0.12 / 8.5.x < 8.5.5.8 HTTP 回應分割 (CVE-2015-2017)
medium
142212Oracle Fusion Middleware Oracle HTTP Server (2020 年 10 月 CPU)
critical
142142IBM WebSphere Application Server 8.0.0.x < 8.0.0.11 / 8.5.x < 8.5.5.6 XSS (CVE-2014-8917)
medium
142141IBM WebSphere Application Server 6.1.0.x <= 6.1.0.47 / 7.0.0.x < 7.0.0.43 / 8.0.0.x < 8.0.0.13 / 8.5.x < 8.5.5.10 XXE (CVE-2015-0254)
critical
142140IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.14 / 9.x < 9.0.0.8 安全性繞過 (CVE-2015-0899)
high
142139IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.15 / 9.x < 9.0.0.10 安全性繞過 (CVE-2014-7810)
medium
142138IBM WebSphere Application Server 7.0.0.x < 7.0.0.43 / 8.0.0.x < 8.0.0.13 / 8.5.x < 8.5.5.10 / 9.0.x < 9.0.0.1 DoS (CVE-2016-2960)
low
142137Nostromo < 1.9.7 遠端程式碼執行
critical
142136Nostromo HTTP 伺服器偵測
info
142060IBM WebSphere Application Server 7.0.0.x < 7.0.0.41 / 8.0.0.x < 8.0.0.13 / 8.5.x < 8.5.5.10 MiTM (CVE-2016-0306)
medium
142059IBM WebSphere Application Server 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.18 / 9.0.x < 9.0.5.5 SSRF (CVE-2019-17566)
high
141920IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.14 / 9.0.x < 9.0.0.8 資訊洩漏 (CVE-2017-1743)
medium
141919IBM WebSphere Application Server 7.0.0.x < 7.0.0.45 / 8.0.0.x < 8.0.0.14 / 8.5.x < 8.5.5.13 / 9.0.x < 9.0.0.5 HTTP 回應分割 (CVE-2017-1503)
medium
141918IBM WebSphere Application Server 6.1.0.x < 6.1.0.47 / 7.0.0.x < 7.0.0.31 / 8.0.0.x < 8.0.0.7 / 8.5.x < 8.5.5.1 點擊劫持 (CVE-2013-1571)
medium
141917IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.14 / 9.0.x < 9.0.0.8 資訊洩漏 (CVE-2012-5783)
medium
141916IBM WebSphere Application Server 9.0.0.4 弱加密 (CVE-2017-1504)
medium
141915IBM WebSphere Application Server 9.0.x < 9.0.0.9 MITM (CVE-2018-8039)
high
141914IBM WebSphere Application Server 6.1.0.x <= 6.1.0.47 / 7.0.0.x < 7.0.0.39 / 8.0.0.x < 8.0.0.11 / 8.5.x < 8.5.5.7 LogJam (CVE-2015-4000)
low
141853IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.17 / 9.0.x < 9.0.5.2 Beanutils 弱點 (CVE-2019-10086)
high
141852IBM WebSphere Application Server 7.0.0.x < 7.0.0.45 / 8.0.0.x < 8.0.0.15 / 8.5.x < 8.5.5.13 / 9.0.x < 9.0.0.7 資訊洩漏 (CVE-2017-1681)
low
141851IBM WebSphere Application Server 8.0.0.x < 8.0.0.14 / 8.5.x < 8.5.5.12 / 9.0.x < 9.0.0.5 弱安全性系結 (CVE-2017-1501)
medium
141850IBM WebSphere Application Server 7.0.0.x < 7.0.0.43 / 8.0.0.x < 8.0.0.13 / 8.5.x < 8.5.5.11 / 9.0.x < 9.0.0.1 FileUpload DoS (CVE-2016-3092)
medium
141566IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.14 / 9.0.x <= 9.0.0.9 多個弱點 (711865)
high
141565IBM WebSphere Application Server 8.0.0.x < 8.0.0.13 / 8.5.x < 8.5.5.11 / 9.0.x < 9.0.0.2 資訊洩漏 (CVE-2016-9736)
medium
141564IBM WebSphere Application Server 8.0.0.x < 8.0.0.15 / 8.5.x < 8.5.5.13 / 9.0.x < 9.0.0.7 RCE (CVE-2016-1000031)
critical
141563IBM WebSphere Application Server 9.0.x < 9.0.0.7 DoS (CVE-2017-12624)
medium
141562IBM WebSphere Application Server 9.0.x < 9.0.5.3 DoS (CVE-2019-12406)
medium
141561IBM WebSphere Application Server 8.0.0.x < 8.0.0.15 / 8.5.x < 8.5.5.13 多種弱點 (296865)
high
141498IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.17 / 9.0.x < 9.0.5.1 檔案遊走 (CVE-2019-4268)
medium
141497IBM WebSphere Application Server 8.5.x < 8.5.5.15 / 9.0.0.x < 9.0.0.11 XSS (CVE-2019-4030)
medium
141473IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.19 / 9.0.x < 9.0.5.6 資訊洩漏 (CVE-2020-4576)
high
141472IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.17 / 9.0.x < 9.0.5.1 XSS (CVE-2019-4270)
medium
141469IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.18 / 9.0.x < 9.0.5.6 XSS (CVE-2020-4578)
medium
141468IBM WebSphere Application Server 8.5.x < 8.5.5.16 / 9.0.x < 9.0.5.0 XSS (CVE-2019-4271)
low
141446Apache Tomcat 9.0.0.M1 < 9.0.38
medium
141394已安裝 Apache HTTP Server (Linux)
info
141263Apache Tomcat 網站列舉
info
140791IBM WebSphere Application Server 7.0.0.x 至 7.0.0.45 / 8.0.0.x 至 8.0.0.15 / 8.5.x 至 8.5.5.17 / 9.0.x 至 9.0.5.5 XXE (CVE-2020-4643)
high