Nessus 的 Web Servers 系列

ID名称严重性
167284SAP NetWeaver AS abap URL 重定向 (3251202)
medium
167283SAP NetWeaver AS ABAP 多个漏洞 (3256571)
medium
166906Apache Tomcat 9.0.0-M1 < 9.0.68 请求走私漏洞
high
166807版本低于 8.5.83 的 Apache Tomcat 8.5.x 请求走私漏洞
high
166806Apache Tomcat 10.0.0.M1 < 10.0.27 漏洞
high
166786Apache Tomcat 10.1.0.M1 < 10.1.1 漏洞
high
166773OpenSSL 3.0.0 < 3.0.7 多种漏洞
high
166545nginx 1.1.x < 1.23.2 / 1.0.x < 1.22.1 内存泄露
high
166047OpenSSL 3.0.0 < 3.0.6 漏洞
high
165588IBM WebSphere 应用程序 SSRF (6824179)
medium
165511Apache Tomcat 10.1.0.M1 < 10.1.0.M14 漏洞
low
165086IBM WebSphere eXtreme Scale 8.6.1.0 < 8.6.1.5 (6598349)
medium
164822SAP NetWeaver AS ABAP 特权提升 (3194674)
medium
164821SAP NetWeaver AS ABAP 授权缺失 (3165801)
high
164820SAP NetWeaver AS ABAP SSRF (3194674)
medium
164809IBM WebSphere Application Server Liberty 17.0.0.3 < 22.0.0.8 (6602039)
high
164505Zebra ZTC 打印机 Web 界面默认管理员密码
critical
164086Intel 主动管理技术 (AMT) 多个漏洞 (INTEL-SA-00709)(远程检查)
critical
164006Microsoft Open Management Infrastructure 的安全更新(2022 年 8 月)
high
163771IBM WebSphere Application Server Liberty 17.0.0.3 <= 22.0.0.7 身份伪造漏洞 (6602015)
high
163589Metabase LFI (CVE-2021-41277)
high
163499Eyes of Network API 凭据保护不充分 (CVE-2020-8657)
critical
163498EyesOfNetwork HTTP API 检测
info
163249IBM WebSphere Application Server 8.5.x < 8.5.5.22 / 9.0.x < 9.0.5.13 XSS
medium
162785SAP NetWeaver AS Java Reverse Tabnabbing (2965315)
medium
162728SAP NetWeaver AS ABAP Information Disclosure (2963137)
medium
162721OpenSSL 1.1.1 < 1.1.1q 漏洞
medium
162720OpenSSL 3.0.0 < 3.0.5 多种漏洞
critical
162673OpenSSL 3.0.4 < 3.0.5-dev 漏洞
critical
162502Apache Tomcat 8.5.50 < 8.5.82 漏洞
medium
162500Apache Tomcat 10.1.0.M1 < 10.1.0.M17 漏洞
medium
162499Apache Tomcat 10.0.0.M1 < 10.0.23 漏洞
medium
162498Apache Tomcat 9.0.30 < 9.0.65 漏洞
medium
162420OpenSSL 1.1.1 < 1.1.1p 漏洞
critical
162419OpenSSL 1.0.2 < 1.0.2zf 漏洞
critical
162418OpenSSL 3.0.0 < 3.0.4 漏洞
critical
162414SAP NetWeaver AS Java 信息泄露漏洞 (Enterprise Portal) (3059764)
medium
162413SAP NetWeaver AS Java 日志记录不足
medium
162396SAP NetWeaver ABAP 错误的访问控制 (3158375)
critical
162321IBM WebSphere Application Server 欺骗漏洞 (6587947)
medium
162316SAP NetWeaver AS Java 信息泄露漏洞 (2256846)
medium
161948Apache 2.4.x < 2.4.54 多个漏洞
critical
161698Nginx Plus < R24P1 1 字节内存覆盖 RCE
high
161697nginx R8 < R18-P1 多个漏洞
high
161696Nginx Plus R1 < R15-P2 / R16 < R16-P1 多个漏洞
medium
161695Nginx Plus > R13 数据泄露漏洞
high
161665SAP NetWeaver AS ABAP 和代码注入漏洞 (3119365)
critical
161664SAP NetWeaver AS ABAP 和代码注入漏洞 (3123196)
medium
161454Apache 2.4.x < 2.4.52 mod_lua 缓冲区溢出漏洞
critical
161371IBM WebSphere Application Server Liberty 17.0.0.3 < 22.0.0.5 信息泄露漏洞 (6585704)
medium