Web Servers Family for Nessus

IDNameSeverity
242984EcoStruxure IT Data Center Expert Detection
info
242983Microsoft SharePoint Server Authentication Bypass (CVE-2025-53771)
medium
242845SimpleHelp < 5.5.11 XSRF
medium
242844SimpleHelp < 5.5.12 RCE
high
242629Apache 2.4.x < 2.4.65
medium
242626Grafana Labs Integration URL Exposed to Viewers (CVE-2025-3415)
medium
242625Grafana Labs XSS (CVE-2025-6023)
high
242566SAP NetWeaver Visual Composer Metadata Uploader Installed
info
242565SAP NetWeaver Application Server JAR Detection
info
242564SAP Netweaver Visual Composer Insecure Deserialization (3604119)
critical
242286IBM WebSphere Application Server 9.x < 9.0.5.26 / Liberty 17.0.0.3 < 25.0.0.8 (7239955)
low
242285IBM WebSphere Application Server 9.x < 9.0.5.25 / Liberty 17.0.0.3 < 25.0.0.8 DoS (7239856)
high
242272Oracle HTTP Server (July 2025 CPU)
high
242271Oracle HTTP Server (July 2025 CPU)
high
242132Grafana Labs < 10.4.17+security-01, 11.2.8+security-01, 11.3.5+security-01, 11.4.3+security-01, 11.5.3+security-01, 11.6.0+security-01 Improper Authorization (CVE-2025-3454)
medium
242117SAP NetWeaver AS ABAP Multiple Vulnerabilities
medium
242116Apache Tomcat 9.0.76 < 9.0.104 multiple vulnerabilities
high
242053IBM WebSphere eXtreme Scale 8.6.1 < 8.6.1.6 (7239492)
high
241984Apache 2.4.x < 2.4.64 Multiple Vulnerabilities
high
241707SAP NetWeaver AS Java Multiple Vulnerabilities (July 2025)
critical
241706Apache Tomcat 11.0.0.M1 < 11.0.9 multiple vulnerabilities
high
241705Apache Tomcat 10.1.0.M1 < 10.1.43 multiple vulnerabilities
high
241680Apache Tomcat 9.0.0.M1 < 9.0.107 multiple vulnerabilities
high
241364Grafana Labs 11.1.0 < 11.2.8+security-01, 11.3.5+security-01, 11.4.3+security-01, 11.5.3+security-01, 11.6.0+security-01 XSS (CVE-2025-2703)
medium
241355Grafana Labs 10.4.x < 10.4.19, 11.2.x < 11.2.10, 11.3.x < 11.3.7, 11.4 < 11.4.5, 11.5 < 11.5.5, 11.6 < 11.6.2, 12.0.x < 12.0.1 Improper Access Control (CVE-2025-3580)
medium
241294DLink DIR-859 1.05 & 1.06B01 Path Traversal
critical
240850Grafana Labs < 11.6.2 Improper Input Validation (CVE-2025-1088)
low
240709IBM WebSphere Application Server 8.5.x < 8.5.5.28 / 9.x < 9.0.5.25 (7237967)
critical
240060Apache Tomcat 9.0.0.M1 < 9.0.106 multiple vulnerabilities
high
240059Apache Tomcat 11.0.0.M1 < 11.0.8 multiple vulnerabilities
high
240058Apache Tomcat 10.1.0.M1 < 10.1.42 multiple vulnerabilities
high
238431SAP Netweaver Visual Composer Multiple Vulnerabilities (June 2025)
critical
238430SAP NetWeaver AS ABAP Missing Authorization Check (3600840)
critical
238429SAP NetWeaver AS ABAP Authorization Bypass Vulnerability
medium
237905Grafana Labs < 11.6.1+security-01 Authorization Bypass (CVE-2025-3260)
medium
237500Apache Tomcat 11.0.0.M1 < 11.0.7
medium
237499Apache Tomcat 10.1.0.M1 < 10.1.41
medium
237498Apache Tomcat 9.0.0.M1 < 9.0.105
medium
237112OpenSSL 3.5.0 < 3.5.1 Vulnerability
medium
236840SAP Netweaver Visual Composer Multiple Vulnerabilities (May 2025)
critical
235034Apache Tomcat 9.0.0.M1 < 9.0.104 multiple vulnerabilities
high
235033Apache Tomcat 10.1.0.M1 < 10.1.40 multiple vulnerabilities
high
235032Apache Tomcat 11.0.0.M1 < 11.0.6 multiple vulnerabilities
high
234858Cisco Nexus Dashboard Web Detection
info
234847SAP Netweaver Visual Composer Detection
info
234802IBM WebSphere Application Server 8.5.x < 8.5.5.28 / 9.x < 9.0.5.24 (7231514)
medium
234227SAP NetWeaver AS ABAP XSS (3559307)
medium
234226SAP NetWeaver AS ABAP Access Control (3554667)
high
234225SAP NetWeaver AS ABAP Authorization Bypass (3565944)
medium
234224SAP NetWeaver AS ABAP Authorization Bypass Vulnerability
medium