Nessus 的 Web Servers 系列

ID名稱嚴重性
162418OpenSSL 3.0.0 < 3.0.4 弱點
critical
162414SAP NetWeaver AS Java 資訊洩漏弱點 (Enterprise Portal) (3059764)
medium
162413SAP NetWeaver AS Java 記錄不足
medium
162396SAP NetWeaver ABAP 不當存取控制 (3158375)
critical
162321IBM WebSphere Application Server 偽造弱點 (6587947)
medium
162316SAP NetWeaver AS Java 資訊洩漏弱點 (2256846)
medium
161948Apache 2.4.x < 2.4.54 多個弱點
critical
161698Nginx Plus < R24 P1 1 位元組記憶體覆寫 RCE
high
161697nginx R8 < R18-P1 多個弱點
high
161696Nginx Plus R1 < R15-P2 / R16 < R16-P1 多個弱點
medium
161695Nginx Plus > R13 資料洩漏弱點
high
161665SAP NetWeaver AS ABAP 與程式碼注入弱點 (3119365)
critical
161664SAP NetWeaver AS ABAP 與程式碼注入弱點 (3123196)
medium
161454Apache 2.4.x < 2.4.52 mod_lua 緩衝區溢位弱點
critical
161371IBM WebSphere Application Server Liberty 17.0.0.3 < 22.0.0.5 資訊洩漏弱點 (6585704)
medium
161370IBM WebSphere Application Server Liberty 17.0.0.3 < 22.0.0.5 身分偽造弱點 (6586734)
medium
161186SAP NetWeaver AS ABAP 多個弱點 (2022 年 1 月)
high
161185SAP NetWeaver AS ABAP 和 AS Java 記憶體損毀弱點 (3145702)
high
161184SAP NetWeaver AS Java XSS (3145046)
medium
161181Apache Tomcat 8.5.0 < 8.5.76 弱點
high
161159Apache Tomcat 9.0.0.M1 < 9.0.21 弱點
high
160894Apache Tomcat 9.0.13 < 9.0.63 弱點
high
160893Apache Tomcat 10.0.0.M1 < 10.0.21 弱點
high
160892Apache Tomcat 10.1.0.M1 < 10.1.0.M15 弱點
high
160891Apache Tomcat 8.5.38 < 8.5.79 弱點
high
160480OpenSSL 1.0.2 < 1.0.2ze 弱點
critical
160477OpenSSL 1.1.1 < 1.1.1o 弱點
critical
160473OpenSSL 3.0.0 < 3.0.3 多個弱點
critical
160298Apache APISIX Dashboard 偵測
info
159947Oracle HTTP Server (2022 年 4 月 CPU)
critical
159550網站接受透過純文字 HTTP 傳輸的信用卡資料
medium
159549網站接受信用卡資料
info
159464Apache Tomcat 9.0.0.M1 < 9.0.62 Spring4Shell (CVE-2022-22965) 緩解措施
low
159463Apache Tomcat 10.0.0.M1 < 10.0.20 Spring4Shell (CVE-2022-22965) 緩解措施
low
159462Apache Tomcat 8.x < 8.5.78 Spring4Shell (CVE-2022-22965) 緩解措施
low
158975OpenSSL 3.0.0 < 3.0.2 弱點
high
158974OpenSSL 1.1.1 < 1.1.1n 弱點
high
158973OpenSSL 1.0.2 < 1.0.2zd 弱點
high
158900Apache 2.4.x < 2.4.53 多個弱點
critical
158562IBM WebSphere Application Server Liberty 17.0.0.3 < 22.0.0.3 點擊劫持 (6559044)
medium
158561IBM WebSphere Application Server 9.x < 9.0.5.12 點擊劫持
medium
158094Apache Solr 未經驗證的存取資訊洩漏
medium
158042SAP NetWeaver AS ABAP 多個弱點 (2022 年 2 月)
high
157866IBM WebSphere Application Server Liberty 21.0.0.10 <= 21.0.0.12 資訊洩露 (6541530)
medium
157848SAP NetWeaver AS 去同步弱點 (ICMAD)
critical
157847SAP NetWeaver AS Java 多個弱點 (ICMAD)
critical
157231OpenSSL 1.0.2 < 1.0.2zc-dev 弱點
medium
157228OpenSSL 1.1.1 < 1.1.1m 弱點
medium
157124Apache Tomcat 10.0.0.M5 < 10.0.16 多個弱點
high
157120Apache Tomcat 10.1.0.M1 < 10.1.0.M10 多個弱點
high