Web Servers Family for Nessus

IDNameSeverity
163771IBM WebSphere Application Server Liberty 17.0.0.3 <= 22.0.0.7 Identity Spoofing (6602015)
high
163589Metabase LFI (CVE-2021-41277)
high
163499Eyes of Network API Insufficient Credential Protection (CVE-2020-8657)
critical
163498EyesOfNetwork HTTP API Detection
info
163249IBM WebSphere Application Server 8.5.x < 8.5.5.22 / 9.0.x < 9.0.5.13 XSS
medium
162785SAP NetWeaver AS Java Reverse Tabnabbing (2965315)
medium
162728SAP NetWeaver AS ABAP Information Disclosure (2963137)
medium
162721OpenSSL 1.1.1 < 1.1.1q Vulnerability
high
162720OpenSSL 3.0.0 < 3.0.5 Multiple Vulnerabilities
critical
162673OpenSSL 3.0.4 < 3.0.5-dev Vulnerability
critical
162502Apache Tomcat 8.5.50 < 8.5.82 vulnerability
medium
162500Apache Tomcat 10.1.0.M1 < 10.1.0.M17 vulnerability
medium
162499Apache Tomcat 10.0.0.M1 < 10.0.23 vulnerability
medium
162498Apache Tomcat 9.0.30 < 9.0.65 vulnerability
medium
162420OpenSSL 1.1.1 < 1.1.1p Vulnerability
critical
162419OpenSSL 1.0.2 < 1.0.2zf Vulnerability
critical
162418OpenSSL 3.0.0 < 3.0.4 Vulnerability
critical
162414SAP NetWeaver AS Java Information Disclosure (Enterprise Portal) (3059764)
medium
162413SAP NetWeaver AS Java Insufficient Logging
medium
162396SAP NetWeaver ABAP Improper Access Control (3158375)
critical
162321IBM WebSphere Application Server Spoofing (6587947)
medium
162316SAP NetWeaver AS Java Information Disclosure (2256846)
medium
161948Apache 2.4.x < 2.4.54 Multiple Vulnerabilities
critical
161698Nginx Plus < R25 1-Byte Memory Overwrite RCE
critical
161697nginx R8 < R18-P1 Multiple Vulnerabilities
high
161696Nginx Plus R1 < R15-P2 / R16 < R16-P1 Multiple Vulnerabilities
medium
161695Nginx Plus > R13 Data Disclosure Vulnerability
high
161665SAP NetWeaver AS ABAP and Code Injection (3119365)
critical
161664SAP NetWeaver AS ABAP and Code Injection (3123196)
medium
161454Apache 2.4.x < 2.4.52 mod_lua Buffer Overflow
critical
161371IBM WebSphere Application Server Liberty 17.0.0.3 < 22.0.0.5 Information Disclosure (6585704)
medium
161370IBM WebSphere Application Server Liberty 17.0.0.3 < 22.0.0.5 Identity Spoofing (6586734)
medium
161186SAP NetWeaver AS ABAP Multiple Vulnerabilities (January 2022)
high
161185SAP NetWeaver AS ABAP and AS Java Memory Corruption (3145702)
high
161184SAP NetWeaver AS Java XSS (3145046)
medium
161181Apache Tomcat 8.5.0 < 8.5.76 vulnerability
high
161159Apache Tomcat 9.0.0.M1 < 9.0.21 vulnerability
high
160894Apache Tomcat 9.0.13 < 9.0.63 vulnerability
high
160893Apache Tomcat 10.0.0.M1 < 10.0.21 vulnerability
high
160892Apache Tomcat 10.1.0.M1 < 10.1.0.M15 vulnerability
high
160891Apache Tomcat 8.5.38 < 8.5.79 vulnerability
high
160480OpenSSL 1.0.2 < 1.0.2ze Vulnerability
critical
160477OpenSSL 1.1.1 < 1.1.1o Vulnerability
critical
160473OpenSSL 3.0.0 < 3.0.3 Multiple Vulnerabilities
critical
160298Apache APISIX Dashboard Detection
info
159947Oracle HTTP Server (Apr 2022 CPU)
critical
159550Web Site Accepts Credit Card Data over cleartext HTTP
medium
159549Web Site Accepts Credit Card Data
info
159464Apache Tomcat 9.x < 9.0.62 Spring4Shell (CVE-2022-22965) Mitigations
info
159463Apache Tomcat 10.x < 10.0.20 Spring4Shell (CVE-2022-22965) Mitigations
info