Nessus 的 Web Servers 系列

ID名称严重性
325543IBM WebSphere Application Server Liberty 17.0.0.3 < 26.0.0.8 DoS (7279284)
high
325539IBM WebSphere Application Server 8.5.x < 8.5.5.30 / 9.x < 9.0.5.29 XSRF (7279256)
medium
324011IBM WebSphere Application Server 8.5.x < 8.5.5.31 / 9.x < 9.0.5.29 / Liberty 17.0.0.3 < 26.0.0.8 (7278576)
high
324010IBM WebSphere Application Server 8.5.x < 8.5.5.31 / 9.x < 9.0.5.29 (7278590)
high
324009IBM WebSphere Application Server Liberty 17.0.0.3 < 26.0.0.8 (7278572)
critical
324008IBM WebSphere Application Server Liberty 17.0.0.3 < 26.0.0.8 (7278580)
critical
323714Apache Tomcat 9.0.0.M1 < 9.0.119 多个漏洞
critical
323713Apache Tomcat 11.0.0.M1 < 11.0.23 多个漏洞
critical
323712Apache Tomcat 10.1.0.M1 < 10.1.56 多个漏洞
critical
323711IBM WebSphere eXtreme Scale < 8.6.1.08.6.1.6 (7278346)
medium
323710Apache Tomcat 9.0.0.M1 < 9.0.102
high
323709Apache Tomcat 11.0.0.M1 < 11.0.5
high
323708Apache Tomcat 10.1.0.M1 < 10.1.39
high
322276IBM WebSphere Application Server Liberty 17.0.0.3 < 26.0.0.7 (7277536)
high
322275IBM WebSphere Application Server 8.5.x < 8.5.5.30 / 9.x < 9.0.5.29 XSS ( 7277546)
critical
322274IBM WebSphere Application Server 8.5.x < 8.5.5.30 / 9.x < 9.0.5.29 RCE (7277544)
high
322273IBM WebSphere Application Server 8.5.x < 8.5.5.31 / 9.x < 9.0.5.29 RCE (7277550)
critical
322141IBM WebSphere eXtreme Scale < 8.6.1.08.6.1.6 (7277387)
high
321915nginx 0.3.50 < 1.30.3 / 1.31.x < 1.31.2 ngx_http_charset_module 中的缓冲区越界读取
medium
321538nginx 1.31.x < 1.31.2 释放后使用漏洞
critical
321534nginx 1.13.10 < 1.30.3 / 1.31.x < 1.31.2 缓冲区溢出
critical
321310IBM WebSphere Application Server 8.5.x < 8.5.5.30 / 9.x < 9.0.5.29 / Liberty 17.0.0.3 < 26.0.0.7 (7276579)
critical
321309IBM WebSphere Application Server 8.5.x < 8.5.5.30 / 9.x < 9.0.5.28 RCE (7276560)
critical
321308IBM WebSphere Application Server 8.5.x < 8.5.5.30 / 9.x < 9.0.5.29 (7276600)
critical
321307IBM WebSphere Application Server 8.5.x < 8.5.5.30 / 9.x < 9.0.5.29 (7276597)
high
320860SAP NetWeaver AS Java 反射型 XSS (3723655)
medium
320859SAP NetWeaver AS ABAP 内存损坏 (3717897)
critical
320858SAML 身份验证中的 SAP NetWeaver AS ABAP XML 签名封装 (3746332)
critical
320857SAP NetWeaver AS Java 目录遍历 (3727078)
critical
320856SAP NetWeaver AS Java Apache Log4j 漏洞 (3726899)
medium
320855SAP NetWeaver AS ABAP 缺少授权检查 (3735546)
high
320142OpenSSL 3.0.0 < 3.0.21 多种漏洞
critical
320141OpenSSL 1.0.2 < 1.0.2zq 多个漏洞
high
320140OpenSSL 4.0.0 < 4.0.1 多个漏洞
critical
320139OpenSSL 1.1.1 < 1.1.1zh 多个漏洞
high
320138OpenSSL 3.4.0 < 3.4.6 多种漏洞
critical
320136OpenSSL 3.5.0 < 3.5.7 多个漏洞
critical
320135OpenSSL 3.6.0 < 3.6.3 多个漏洞
critical
319665Apache 2.4.x < 2.4.68 多个漏洞
high
318180IBM WebSphere Application Server 8.5.x < 8.5.5.30 / 9.x < 9.0.5.29 RCE (7274733)
critical
318169IBM WebSphere Application Server 8.5.x < 8.5.5.30 / 9.x < 9.0.5.29 身份欺骗 (7274740)
critical
318160IBM WebSphere Application Server 8.5.x < 8.5.5.30 / 9.x < 9.0.5.29 RCE (7274738)
critical
317395IBM HTTP Server 8.5.0.0 < 8.5.5.30 / 9.0.0.0 < 9.0.5.29 多个漏洞 (7274065)
critical
316826IBM WebSphere Application Server 8.5.x/9.x RCE (7274072)
critical
316773nginx 0.6.27 < 1.30.1 ngx_http_rewrite_module 堆缓冲区溢出
critical
316482Grafana Labs < 11.6.14+security-04 / 12.2.0 < 12.2.8+security-04 / 12.3.0 < 12.3.6+security-04 / 12.4.0 < 12.4.3+security-02 / 13.0.0 < 13.0.1+security-01 多个漏洞
high
316002Apache Tomcat 11.0.0.M1 < 11.0.22 多个漏洞
critical
315541IBM WebSphere Application Server Liberty 22.0.0.11 < 26.0.0.6 (7273425)
medium
315540IBM WebSphere Application Server 8.5.x < 8.5.5.30 / 9.x < 9.0.5.28 / Liberty 19.0.0.7 < 26.0.0.6 DoS (7273424)
high
314954SAP NetWeaver AS ABAP 代码注入 (3735359)
medium