Web Servers Family for Nessus

ID	Name	Severity
166806	Apache Tomcat 10.0.0.M1 < 10.0.27	high
166786	Apache Tomcat 10.1.0.M1 < 10.1.1	high
166773	OpenSSL 3.0.0 < 3.0.7 Multiple Vulnerabilities	high
166545	nginx 1.1.x < 1.23.2 / 1.0.x < 1.22.1 Memory Disclosure	high
166047	OpenSSL 3.0.0 < 3.0.6 Vulnerability	high
165588	IBM WebSphere Application SSRF (6824179)	medium
165511	Apache Tomcat 10.1.0.M1 < 10.1.0.M14	low
165086	IBM WebSphere eXtreme Scale 8.6.1.0 < 8.6.1.5 (6598349)	medium
164822	SAP NetWeaver AS ABAP Privilege Escalation (3194674)	medium
164821	SAP NetWeaver AS ABAP Missing Authorization (3165801)	high
164820	SAP NetWeaver AS ABAP SSRF (3194674)	medium
164809	IBM WebSphere Application Server Liberty 17.0.0.3 < 22.0.0.8 (6602039)	high
164505	Zebra ZTC Printer Web Interface Default Admin Password	critical
164086	Intel Active Management Technology (AMT) Multiple Vulnerabilities (INTEL-SA-00709) (remote check)	critical
164006	Security Updates for Microsoft Open Management Infrastructure (August 2022)	high
163771	IBM WebSphere Application Server Liberty 17.0.0.3 <= 22.0.0.7 Identity Spoofing (6602015)	high
163589	Metabase LFI (CVE-2021-41277)	high
163499	Eyes of Network API Insufficient Credential Protection (CVE-2020-8657)	critical
163498	EyesOfNetwork HTTP API Detection	info
163249	IBM WebSphere Application Server 8.5.x < 8.5.5.23 / 9.0.x < 9.0.5.14 XSS	medium
162785	SAP NetWeaver AS Java Reverse Tabnabbing (2965315)	medium
162728	SAP NetWeaver AS ABAP Information Disclosure (2963137)	medium
162721	OpenSSL 1.1.1 < 1.1.1q Vulnerability	medium
162720	OpenSSL 3.0.0 < 3.0.5 Multiple Vulnerabilities	critical
162673	OpenSSL 3.0.4 < 3.0.5-dev Vulnerability	critical
162502	Apache Tomcat 8.5.50 < 8.5.82	medium
162500	Apache Tomcat 10.1.0.M1 < 10.1.0.M17	medium
162499	Apache Tomcat 10.0.0.M1 < 10.0.23	medium
162498	Apache Tomcat 9.0.30 < 9.0.65	medium
162420	OpenSSL 1.1.1 < 1.1.1p Vulnerability	critical
162419	OpenSSL 1.0.2 < 1.0.2zf Vulnerability	critical
162418	OpenSSL 3.0.0 < 3.0.4 Vulnerability	critical
162414	SAP NetWeaver AS Java Information Disclosure (Enterprise Portal) (3059764)	medium
162413	SAP NetWeaver AS Java Insufficient Logging	medium
162396	SAP NetWeaver ABAP Improper Access Control (3158375)	critical
162321	IBM WebSphere Application Server Spoofing (6587947)	medium
162316	SAP NetWeaver AS Java Information Disclosure (2256846)	medium
161948	Apache 2.4.x < 2.4.54 Multiple Vulnerabilities	critical
161698	Nginx Plus < R24 P1 1-Byte Memory Overwrite RCE	high
161697	nginx R8 < R18-P1 Multiple Vulnerabilities	high
161696	Nginx Plus R1 < R15-P2 / R16 < R16-P1 Multiple Vulnerabilities	medium
161695	Nginx Plus > R13 Data Disclosure Vulnerability	high
161665	SAP NetWeaver AS ABAP and Code Injection (3119365)	critical
161664	SAP NetWeaver AS ABAP and Code Injection (3123196)	medium
161454	Apache 2.4.x < 2.4.52 mod_lua Buffer Overflow	critical
161371	IBM WebSphere Application Server Liberty 17.0.0.3 < 22.0.0.5 Information Disclosure (6585704)	medium
161370	IBM WebSphere Application Server Liberty 17.0.0.3 < 22.0.0.5 Identity Spoofing (6586734)	medium
161186	SAP NetWeaver AS ABAP Multiple Vulnerabilities (January 2022)	high
161185	SAP NetWeaver AS ABAP and AS Java Memory Corruption (3145702)	high
161184	SAP NetWeaver AS Java XSS (3145046)	medium

Detections

Analytics

Web Servers Family for Nessus

high

high

high

high

high

medium

low

medium

medium

high

medium

high

critical

critical

high

high

high

critical

info

medium

medium

medium

medium

critical

critical

medium

medium

medium

medium

critical

critical

critical

medium

medium

critical

medium

medium

critical

high

high

medium

high

critical

medium

critical

medium

medium

high

high

medium