Web Servers Family for Nessus

Page 2 of 24 1180 total

IDNameSeverity
121121Apache Tomcat 7.0.x < 7.0.88 Denial of ServiceMedium
121120Apache Tomcat 7.0.x < 7.0.76 / 8.0.x < 8.0.42 / 8.5.x < 8.5.12 / 9.0.x < 9.0.0.M18 Improper Access ControlMedium
121119Apache Tomcat 7.0.x < 7.0.70 / 8.0.x < 8.0.36 / 8.5.x < 8.5.3 / 9.0.x < 9.0.0.M8 Denial of ServiceHigh
121118Apache Tomcat < 7.0.67 Session FixationMedium
121117Apache Tomcat 7.0.x < 7.0.65 / 8.0.x < 8.0.27 Directory TraversalMedium
121116Apache Tomcat 7.0.x < 7.0.47 / 8.0.x < 8.0.0-RC3 Information DisclosureMedium
121115Apache Tomcat < 7.0.2 Denial of Service and Information DisclosureMedium
121114Apache Tomcat < 6.0.6 Cross-Site ScriptingLow
121113Apache Tomcat < 6.0.14 Multiple VulnerabilitiesMedium
121112Apache Tomcat < 6.0.10 Directory TraversalMedium
109394WAS Target Scanning for PCIInfo
119843IBM BigFix Platform 9.2.x < 9.2.15 / 9.5.x < 9.5.10 Multiple VulnerabilitiesMedium
119811Script Src Integrity CheckHigh
119777GPON ONT Home Gateway Router is vulnerable to authenticated remote command execution (CVE-2018-10562)High
119776GPON ONT Home Gateway Router is vulnerable to authentication bypass (CVE-2018-10561)High
119682Quest NetVault Backup Server DetectionInfo
119680IBM WebSphere Application Server 9.0.0.x < 9.0.0.10 XML External Entity Injection (XXE) Vulnerability (CVE-2018-1905)Medium
119679IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.15 / 9.0.0.x < 9.0.0.10 Admin Console Directory Traversal Vulnerability (CVE-2018-1770)Medium
119678IBM WebSphere Application Server 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.14 / 9.0.0.x < 9.0.0.9 Installation Verification Tool Cross-site Scripting (XSS) Vulnerability (CVE-2018-1643)Medium
119559Oracle GlassFish Server 3.1.2.x < 3.1.2.19 (October 2018 CPU)Medium
119608lighttpd < 1.4.51 Multiple VulnerabilitiesMedium
119607lighttpd < 1.4.50 Multiple VulnerabilitiesMedium
118956nginx 1.x < 1.14.1 / 1.15.x < 1.15.6 Multiple VulnerabiltiesHigh
118710Appweb < 7.0.3 authCondition Authentication Bypass VulnerabilityMedium
118151nginx Data Disclosure VulnerabilityMedium
118150nginx < 1.10.1 / 1.11.x < 1.11.1 Denial-of-Service VulnerabilityMedium
118091VMware AirWatch Console 9.1.x < 9.1.5.6 / 9.2.x < 9.2.3.27 / 9.3.x < 9.3.0.25 / 9.4.x < 9.4.0.22 / 9.5.x < 9.5.0.16 / 9.6.x < 9.6.0.7 / 9.7.x < 9.7.0.3 SAML Security BypassMedium
118087Citrix NetScaler Management and Analytics SystemInfo
118086Citrix NetScaler Management and Analytics System Default Administrator CredentialsHigh
118037Apache Tomcat 9.0.0.M1 < 9.0.12 Open Redirect WeaknessMedium
118036Apache Tomcat 8.5.x < 8.5.34 Open Redirect WeaknessMedium
118035Apache Tomcat 7.0.0 < 7.0.91 Open Redirect WeaknessMedium
117860TP-Link HTTP Server DetectionInfo
117807Apache 2.4.x < 2.4.35 DoSMedium
117463Zinwave Series 3000 DAS Web Interface DetectionInfo
112120OpenSSL 1.1.0 < 1.1.0i Multiple VulnerabilitiesMedium
112119OpenSSL 1.0.x < 1.0.2p Multiple VulnerabilitiesMedium
111788Apache 2.4.x < 2.4.34 Multiple VulnerabilitiesMedium
111665Oracle WebLogic Server Deserialization RCE (CVE-2018-2893)High
111465Apache HTTP Server Error Page DetectionInfo
111069Apache Tomcat 9.0.0 < 9.0.10 Multiple VulnerabilitesHigh
111066Apache Tomcat 7.0.41 < 7.0.90 Multiple VulnerabilitiesHigh
111068Apache Tomcat 8.5.0 < 8.5.32 Multiple VulnerabilitiesHigh
111067Apache Tomcat 8.0.0 < 8.0.53 Security Constraint WeaknessHigh
110944NetApp SANtricity Web Services Proxy DetectionInfo
110943NetApp SANtricity Web Services Proxy Unauthenticated RCECritical
109945OpenSSL 1.0.x < 1.0.2o Multiple VulnerabilitiesMedium
109553Oracle WebLogic HTTP DetectionInfo
109429Oracle WebLogic Server Deserialization RCE (CVE-2018-2628)Critical
109321JBoss Enterprise Application Platform doFilter() Method Insecure Deserialization RCEHigh

Page 2 of 24 1180 total