偵測

Nessus 的 Web Servers 系列

ID名稱嚴重性
138097Apache Tomcat 8.5.0 < 8.5.56
high
138091IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.18 / 9.0.x < 9.0.5.5 資訊洩漏 (CVE-2020-4449)
high
138074Oracle WebLogic Server Java 物件還原序列化 RCE (CVE-2020-2883)
critical
137398IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.18 / 9.0.x < 9.0.5.4 遠端程式碼執行 (CVE-2020-4448)
critical
137368IBM WebSphere Application Server 8.5.x < 8.5.5.18 / 9.0.x < 9.0.5.5 RCE (CVE-2020-4450)
critical
136931Apache Traffic Server - HTTP 走私和快取毒害
medium
136897IBM WebSphere Application Server 7.0.0.0 <= 7.0.0.45 / 8.0.0.0 <= 8.0.0.15 / 8.5.0.0 <= 8.5.5.14 / 9.0.0.0 <= 9.0.0.9 XSS
medium
136892IBM WebSphere Application Server 管理主控台 7.0.0.0 <= 7.0.0.45 / 8.0.0.0 <= 8.0.0.15 / 8.5.0.0 <= 8.5.5.14 / 9.0.0.0 <= 9.0.0.9 XSS
medium
136807Apache Tomcat 8.5.0 < 8.5.55
high
136806Apache Tomcat 9.0.0 < 9.0.35
high
136770Apache Tomcat 7.0.0 < 7.0.104
high
136764IBM MQ 主控台偵測
info
136763IBM MQ 預設認證
critical
136426IBM WebSphere Application Server 9.0.0.0 < 9.0.0.9 資訊洩漏 (CVE-2018-1957)
medium
136410IBM WebSphere Application Server 7.0 < 7.0.0.46 / 8.0 < 8.0.0.16 / 8.5 < 8.5.5.18 / 9.0 < 9.0.5.4 / Liberty 17.0.0.3 < 20.0.0.5 資訊洩漏
medium
136340已安裝 nginx (Linux/UNIX)
info
136183IBM WebSphere Application Server 7.0.0.0 <= 7.0.0.45 / 8.0.0.0 <= 8.0.0.15 / 8.5.0.0 <= 8.5.5.14 / 9.0.0.0 <= 9.0.0.9 跨網站指令碼弱點
medium
136180IBM WebSphere Application Server 7.x / 8.0.0.0 <= 8.0.0.15 / 8.5.0.0 <= 8.5.5.14 / 9.0.0.0 <= 9.0.0.9 目錄遊走弱點
medium
135919OpenSSL 1.1.1d < 1.1.1g 弱點
high
135771IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.15 / 9.x < 9.0.0.10 XSS (CVE-2018-1794)
medium
135720IBM WebSphere Application Server 7.0.0.0 <= 7.0.0.45 / 8.0.0.0 <= 8.0.0.15 / 8.5.0.0 <= 8.5.5.15 / 9.0.0.0 <= 9.0.0.10 連線偽造弱點
medium
135702IBM WebSphere Application Server 7.0.0.0 <= 7.0.0.45 / 8.0.0.0 <= 8.0.0.15 / 8.5.0.0 <= 8.5.5.17 / 9.0.0.0 <= 9.0.5.3 權限提升 (CVE-2020-4362)
high
135677Oracle Fusion Middleware Oracle HTTP Server (2020 年 4 月 CPU)
high
135290Apache 2.4.x < 2.4.42 多個弱點
medium
135180IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.18 / 9.0.x < 9.0.5.4 權限提升 (CVE-2020-4276)
high
134862Apache Tomcat AJP 連接器要求插入 (Ghostcat)
critical
134220nginx < 1.17.7 資訊洩漏
medium
133845Apache Tomcat 9.0.0.M1 < 9.0.31 多個弱點
critical
133696IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.17 / 9.0.x < 9.0.5.3 命令執行 (CVE-2020-4163)
high
133529IBM WebSphere Application Server 拒絕服務 (CVE-2019-4720)
high
133360IBM WebSphere Application Server Virtual Enterprise 7.0.x <= 7.0.0.6 / Virtual Enterprise 8.0.x / 8.5.5.x < 8.5.5.17 / 9.0.x < 9.0.5.1 資訊洩漏 (CVE-2019-4505)
medium
133275IBM WebSphere Application Server 9.0.x < 9.0.5.0 資訊洩漏 (CVE-2019-4269)
high
133274IBM WebSphere Application Server 8.5.x < 8.5.5.15 / 9.0.0.x < 9.0.0.10 跨網站要求偽造 (CVE-2018-1926)
high
133273IBM WebSphere Application Server 8.5.x < 8.5.5.15 / 9.0.0.x < 9.0.0.10 權限提升 (CVE-2018-1901)
high
133272IBM WebSphere Application Server 8.5.x < 8.5.5.15 / 9.0.0.x < 9.0.0.10 權限提升 (CVE-2018-1840)
high
133271IBM WebSphere Application Server 8.5.x < 8.5.5.15 / 9.0.0.x < 9.0.0.10 資訊洩漏 (CVE-2018-1614)
high
133270IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.15 / 9.0.0.x < 9.0.0.10 遠端程式碼執行 (CVE-2018-1567)
critical
133146Oracle Fusion Middleware Oracle HTTP Server (2020 年 1 月 CPU)
medium
132775nginx 0.8.x < 0.8.33 / 0.7.x < 0.7.65 Windows 檔案名稱假名 (CORE-2010-0121)
low
132726OpenSSL 1.0.2 < 1.0.2u 弱點
medium
132725OpenSSL 1.1.1 < 1.1.1e-dev 程序溢位弱點
medium
132419Apache Tomcat 9.0.0.M1 < 9.0.30
high
132418Apache Tomcat 8.5.0 < 8.5.50
high
132413Apache Tomcat 8.5.0 < 8.5.49 多個弱點
high
132076IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.17 / 9.0.x < 9.0.5.2 / Liberty < 19.0.0.11 資訊洩漏 (CVE-2019-4441)
medium
131733IBM WebSphere Application Server 7.0.x / 8.0.0.x / 8.5.x < 8.5.5.17 / 9.0.0.x < 9.0.5.2 目錄遊走弱點
medium
130590已安裝 Apache Tomcat (Windows)
info
130175已安裝 Apache Tomcat (Linux/Unix)
info
129097IBM WebSphere Application Server 7.0.x / 8.0.0.x / 8.5.x < 8.5.5.17 / 9.0.0.x < 9.0.5.1 資訊洩漏 (CVE-2019-4477)
medium
128523Oracle GlassFish Server < 3.0.1.22 多個弱點
critical