Web Servers Family for Nessus

ID	Name	Severity
271696	Apache Tomcat 11.0.0.M1 < 11.0.12	high
271695	Apache Tomcat 10.1.0.M1 < 10.1.47	high
271694	Apache Tomcat 9.0.0.M1 < 9.0.110	high
271693	Apache Tomcat 11.0.0.M1 < 11.0.11 multiple vulnerabilities	high
271692	Apache Tomcat 10.1.0.M1 < 10.1.45 multiple vulnerabilities	high
271691	Apache Tomcat 9.0.40 < 9.1.109 multiple vulnerabilities	high
270697	SAP NetWeaver AS ABAP Multiple Vulnerabilities (October 2025)	medium
270696	SAP NetWeaver AS Java Insecure Deserialization (October 2025)	critical
270347	IBM WebSphere eXtreme Scale 8.6.1.0 < 8.6.1.6 (7247893)	high
266319	OpenSSL 3.2.0 < 3.2.6 Multiple Vulnerabilities	medium
266318	OpenSSL 1.0.2 < 1.0.2zm Vulnerability	high
266298	OpenSSL 3.5.0 < 3.5.4 Multiple Vulnerabilities	medium
266297	OpenSSL 3.0.0 < 3.0.18 Multiple Vulnerabilities	high
266295	OpenSSL 3.4.0 < 3.4.3 Multiple Vulnerabilities	medium
266294	OpenSSL 1.1.1 < 1.1.1zd Vulnerability	high
266293	OpenSSL 3.3.0 < 3.3.5 Multiple Vulnerabilities	medium
266141	IBM WebSphere Application Server 8.5.x < 8.5.5.29 / 9.x < 9.0.5.26 DoS (7246549)	medium
265967	Omnissa Workspace ONE UEM Multiple Vulnerabilities (OMSA-2025-0004)	high
264635	SAP Netweaver Insecure Deserialization Vulnerability (3634501)	critical
264582	IBM WebSphere Application Server Liberty 17.0.0.3 < 25.0.0.10 (7244573)	medium
264548	IBM WebSphere Application Server Liberty 18.0.0.2 < 25.0.0.8 Denial of Service (7242086)	high
264547	IBM WebSphere Application Server Liberty 17.0.0.3 < 25.0.0.8 Stored Cross-Site Scripting (7242026)	medium
260145	Rejetto HTTP File Server 2.3x < 2.3c RCE	critical
256696	SAP NetWeaver AS ABAP Privileges Escalation (3623440)	high
253588	nginx 0.7.22 < 1.29.1 Information Disclosure	medium
252286	SAP NetWeaver - p4lib JAR Detection	info
250286	SAP NetWeaver AS ABAP Multiple Vulnerabilities (August 2025)	medium
249353	IBM WebSphere Application Server 8.5.x < 8.5.5.29 / 9.x < 9.0.5.25 (7242172)	medium
249236	Apache Tomcat 11.0.0.M1 < 11.0.10	high
249235	Apache Tomcat 9.0.0.M1 < 9.0.108	high
249233	IBM WebSphere Application Server 8.5.x < 8.5.5.29 / 9.x < 9.0.5.26 / Liberty 17.0.0.3 < 25.0.0.9 DoS (7242088)	high
249232	IBM WebSphere Application Server Liberty 17.0.0.3 < 25.0.0.9 (7242027)	high
249230	Apache Tomcat 10.1.0.M1 < 10.1.44	high
243577	Apache Tomcat 10.1.0.M1 < 10.1.40 multiple vulnerabilities	high
243576	Apache Tomcat 10.1.0.M1 < 10.1.40 multiple vulnerabilities	high
242984	EcoStruxure IT Data Center Expert Detection	info
242983	Microsoft SharePoint Server Authentication Bypass (CVE-2025-53771)	medium
242845	SimpleHelp < 5.5.11 XSRF	medium
242844	SimpleHelp < 5.5.12 RCE	high
242629	Apache 2.4.x < 2.4.65	medium
242626	Grafana Labs Integration URL Exposed to Viewers (CVE-2025-3415)	medium
242625	Grafana Labs XSS (CVE-2025-6023)	high
242566	SAP NetWeaver Visual Composer Metadata Uploader Installed	info
242565	SAP NetWeaver Application Server JAR Detection	info
242564	SAP Netweaver Visual Composer Insecure Deserialization (3604119)	critical
242286	IBM WebSphere Application Server 9.x < 9.0.5.25 / Liberty 17.0.0.3 < 25.0.0.8 (7239955)	high
242285	IBM WebSphere Application Server 9.x < 9.0.5.25 / Liberty 17.0.0.3 < 25.0.0.8 DoS (7239856)	high
242272	Oracle HTTP Server (July 2025 CPU)	high
242271	Oracle HTTP Server (July 2025 CPU)	high
242132	Grafana Labs < 10.4.17+security-01, 11.2.8+security-01, 11.3.5+security-01, 11.4.3+security-01, 11.5.3+security-01, 11.6.0+security-01 Improper Authorization (CVE-2025-3454)	medium

Detections

Analytics

Web Servers Family for Nessus

high

high

high

high

high

high

medium

critical

high

medium

high

medium

high

medium

high

medium

medium

high

critical

medium

high

medium

critical

high

medium

info

medium

medium

high

high

high

high

high

high

high

info

medium

medium

high

medium

medium

high

info

info

critical

high

high

high

high

medium