Web Servers Family for Nessus

IDNameSeverity
157124Apache Tomcat 10.0.0.M5 < 10.0.16 multiple vulnerabilities
high
157120Apache Tomcat 10.1.0.M1 < 10.1.0.M10 multiple vulnerabilities
high
157119Apache Tomcat 8.5.55 < 8.5.75 multiple vulnerabilities
high
157117Apache Tomcat 9.0.35 < 9.0.58 multiple vulnerabilities
high
156945Cisco Adaptive Security Device Manager (ASDM) Detection
info
156944Oracle HTTP Server (Jan 2022 CPU)
critical
156941MobileIron Core Log4Shell Direct Check (CVE-2021-44228)
critical
156725SAP NetWeaver AS ABAP Information Disclosure (January 2022)
medium
156724IBM WebSphere Application Server 7.x <= 7.0.0.45 / 8.x <= 8.0.0.15 / 8.5.x < 8.5.5.21 / 9.x < 9.0.5.11 DoS
high
156614ShareFile < 5.11.20 RCE (CVE-2021-22941)
critical
156361VMware Workspace ONE UEM console SSRF (VMSA-2021-0029)
high
156326SAP NetWeaver AS Java XSS (2956398)
medium
156255Apache 2.4.x < 2.4.52 Multiple Vulnerabilities
critical
156226SAP NetWeaver AS ABAP Code Injection (December 2021)
medium
156164Apache Log4Shell CVE-2021-45046 Bypass Remote Code Execution
critical
156100OpenSSL 3.0.0 < 3.0.1 Vulnerability
high
156014Apache Log4Shell RCE detection via callback correlation (Direct Check HTTP)
critical
155998Apache Log4j Message Lookup Substitution RCE (Log4Shell) (Direct Check)
critical
155964ThinkPHP < 5.0.24 RCE
critical
155603SAP NetWeaver AS ABAP Incorrect Authorization (November 2021)
medium
154967Draytek VigorConnect Web UI Detection
info
154966Draytek VigorConnect LFI (CVE-2021-20123)
high
154919SAP NetWeaver AS Java XXE Vulnerability (2296909)
medium
154918SAP NetWeaver AS Java Directory Traversal Vulnerability (2547431)
medium
154416Nacos < 1.4.1 Authentication Bypass (CVE-2021-29441)
critical
154340Oracle HTTP Server (Oct 2021 CPU)
medium
154151Apache Tomcat 10.0.0.M10 < 10.0.12 vulnerability
high
154150Apache Tomcat 9.0.40 < 9.0.54 vulnerability
high
154149Apache Tomcat 10.1.0.M1 < 10.1.0.M6 vulnerability
high
154147Apache Tomcat 8.5.60 < 8.5.72 vulnerability
high
154141SAP NetWeaver AS ABAP Multiple Vulnerabilities (Oct 2021)
high
153952Apache 2.4.49 < 2.4.51 Path Traversal Vulnerability
critical
153884Apache 2.4.49 < 2.4.50 Multiple Vulnerabilities
high
153587IBM WebSphere Application Server Information Disclosure (6489485)
medium
153586Apache >= 2.4.30 < 2.4.49 mod_proxy_uwsgi
high
153585Apache >= 2.4.17 < 2.4.49 mod_http2
high
153584Apache < 2.4.49 Multiple Vulnerabilities
critical
153583Apache < 2.4.49 Multiple Vulnerabilities
critical
153486Microsoft Open Management Infrastructure RCE (CVE-2021-38647)
critical
153474Microsoft Open Management Infrastructure < 1.6.8.1 Multiple Vulnerabilities
critical
153441SAP NetWeaver AS Missing Authorization Check (September 2021)
critical
152872VMware Workspace ONE UEM console DoS (VMSA-2021-0017)
high
152871Python Information Disclosure in PyDoc (CVE-2021-3426)
medium
152782OpenSSL 1.1.1 < 1.1.1l Vulnerability
critical
152780OpenSSL 1.0.2 < 1.0.2za Vulnerability
high
152543Microsoft Azure CycleCloud Privilege Escalation (CVE-2021-33762)
high
152542Azure CycleCloud Web UI Detection
info
152541Microsoft Azure CycleCloud Privilege Escalation (CVE-2021-36943)
high
152484GitLab Web UI Detection
info
152191IBM WebSphere Application Server 7.0.x <= 7.0.0.45 / 8.0.x <= 8.0.0.14 / 8.5.x < 8.5.5.21 / 9.0.x < 9.0.5.9 Privilege Escalation
high