检测

Nessus 的 Web Servers 系列

ID名称严重性
133696IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.17 / 9.0.x < 9.0.5.3 命令执行 (CVE-2020-4163)
high
133529IBM WebSphere 应用程序服务器拒绝服务 (CVE-2019-4720)
high
133360IBM WebSphere Application Server Virtual Enterprise 7.0.x <= 7.0.0.6 / Virtual Enterprise 8.0.x / 8.5.5.x < 8.5.5.17 / 9.0.x < 9.0.5.1 信息泄露 (CVE-2019-4505)
medium
133275IBM WebSphere Application Server 9.0.x < 9.0.5.0 信息泄露 (CVE-2019-4269)
high
133274IBM WebSphere Application Server 8.5.x < 8.5.5.15 / 9.0.0.x < 9.0.0.10 跨站请求伪造 (CVE-2018-1926)
high
133273IBM WebSphere Application Server 8.5.x < 8.5.5.15 / 9.0.0.x < 9.0.0.10 特权提升 (CVE-2018-1901)
high
133272IBM WebSphere Application Server 8.5.x < 8.5.5.15 / 9.0.0.x < 9.0.0.10 特权提升 (CVE-2018-1840)
high
133271IBM WebSphere Application Server 8.5.x < 8.5.5.15 / 9.0.0.x < 9.0.0.10 信息泄露 (CVE-2018-1614)
high
133270IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.15 / 9.0.0.x < 9.0.0.10 远程代码执行 (CVE-2018-1567)
critical
133146Oracle Fusion Middleware Oracle HTTP Server(2020 年 1 月 CPU)
medium
132775nginx 0.8.x < 0.8.33 / 0.7.x < 0.7.65 Windows 文件名假名 (CORE-2010-0121)
low
132726OpenSSL 1.0.2 < 1.0.2u 漏洞
medium
132725OpenSSL 1.1.1 < 1.1.1e-dev 程序溢出漏洞
medium
132419Apache Tomcat 9.0.0.M1 < 9.0.30
high
132418Apache Tomcat 8.5.0 < 8.5.50
high
132413Apache Tomcat 8.5.0 < 8.5.49 多个漏洞
high
132076IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.17 / 9.0.x < 9.0.5.2 / Liberty < 19.0.0.11 信息泄露 (CVE-2019-4441)
medium
131733IBM WebSphere Application Server 7.0.x / 8.0.0.x / 8.5.x < 8.5.5.17 / 9.0.0.x < 9.0.5.2 目录遍历漏洞
medium
130590已安装 Apache Tomcat (Windows)
info
130175已安装 Apache Tomcat (Linux/Unix)
info
129097IBM WebSphere Application Server 7.0.x / 8.0.0.x / 8.5.x < 8.5.5.17 / 9.0.0.x < 9.0.5.1 信息泄露 (CVE-2019-4477)
medium
128523Oracle GlassFish Server < 3.0.1.22 多个漏洞
critical
128117OpenSSL 1.1.0 < 1.1.0l 多个漏洞
medium
128116OpenSSL 1.1.1 < 1.1.1d 多个漏洞
medium
128115OpenSSL 1.0.2 < 1.0.2t 多个漏洞
medium
128065IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.15 / 9.0.0.x < 9.0.0.10 Admin Console 目录遍历漏洞 (CVE-2018-1770)
medium
128033Apache 2.4.x < 2.4.41 多个漏洞
critical
127907nginx 1.9.5 < 1.16.1 / 1.17.x < 1.17.3 多个漏洞
high
126781Oracle Fusion Middleware Oracle HTTP Server(2019 年 7 月 CPU)
high
126312Apache Tomcat 9.0.0.M1 < 9.0.16
high
126262Oracle WebLogic 服务器反序列化 RCE (CVE-2019-2729)
critical
126245Apache Tomcat 9.0.0.M1 < 9.0.20 DoS
high
126125Apache Tomcat 8.5.0 < 8.5.41 DoS
high
126052IBM WebSphere Application Server 远程代码执行漏洞 (CVE-2018-1904)
critical
125642OpenSSL 1.1.0 < 1.1.0k 漏洞
high
125641OpenSSL 1.1.1 < 1.1.1c 漏洞
high
125630IBM WebSphere Application Server Virtual Enterprise 7.0.x / Network Deployment 8.5.x < 8.5.5.16 / Network Deployment 9.0.0.x <= 9.0.0.11 远程代码执行漏洞 (CVE-2019-4279)
critical
125595IBM WebSphere Application Server 8.5.x < 8.5.5.15 / 9.0.0.x < 9.0.0.9 TLS 降级漏洞 (CVE-2018-1719)
medium
125265Oracle WebLogic Server Java 对象反序列化 RCE (CVE-2018-3245)
critical
124566IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.15 表单登录伪造漏洞 (CVE-2018-1695)
medium
124565IBM BigFix Platform 9.5.x < 9.5.12 多个漏洞
critical
124564IBM BigFix Platform 9.2.x < 9.2.16 / 9.5.x < 9.5.11 信息泄露
medium
124563IBM BigFix Platform 9.5.x < 9.5.10 纯文本凭证
high
124338Oracle WebLogic WLS9-async 远程代码执行(远程检查)
critical
124336NGINX Unit HTTP 服务器检测
info
124335NGINX Unit 0.x > 0.3 / 1.x < 1.7.1 堆缓冲区溢出 (CVE-2019-7401)
critical
124240GPON ONT Home Gateway 远程启用 Telnet (CVE-2019-3917)
high
124156Oracle Fusion Middleware Oracle HTTP Server(2019 年 4 月 CPU)
critical
124090Oracle Fusion Middleware Oracle HTTP Server 多种漏洞(2018 年 10 月 CPU)
critical
124064Apache Tomcat 7.0.0 < 7.0.94 多个漏洞
high