Scribd
Upload
2 views

exam

The report from Tenable Nessus identifies a total of 55 vulnerabilities on the host 192.168.199.128, with 1 critical, 15 high, 9 medium, 3 low, and 27 informational issues. The critical vulnerability is associated with Apache Tomcat version 8.5.0, which has multiple vulnerabilities. The report details various high and medium severity vulnerabilities related to different versions of Apache Tomcat, indicating a need for immediate attention and remediation.

Uploaded by

maria2001ggs
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
2 views

exam

The report from Tenable Nessus identifies a total of 55 vulnerabilities on the host 192.168.199.128, with 1 critical, 15 high, 9 medium, 3 low, and 27 informational issues. The critical vulnerability is associated with Apache Tomcat version 8.5.0, which has multiple vulnerabilities. The report details various high and medium severity vulnerabilities related to different versions of Apache Tomcat, indicating a need for immediate attention and remediation.

Uploaded by

maria2001ggs
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 6

scan

Report generated by Tenable Nessus™ sun, 29 Sep 2024 23 :21:00 EEST


TABLE OF CONTENTS

Vulnerabilities by Host
• 192.168.199.128.............................................................................................................................................................. 4
Vulnerabilities by Host
192.168.199.128

1 15 9 3 27
CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 55

SEVERITY CVSS VPR SCORE EPSS SCORE PLUGIN NAME


V3.0

CRITICAL 9.8 - - 197827 Apache Tomcat 8.5.0 < 8.5.51 multiple vulnerabilities

HIGH 8.6 - - 161181 Apache Tomcat 8.5.0 < 8.5.76

HIGH 8.1 - - 124063 Apache Tomcat 8.5.0 < 8.5.40 multiple vulnerabilities

HIGH 7.5 - - 126125 Apache Tomcat 8.5.0 < 8.5.41 DoS

HIGH 7.5 - - 132418 Apache Tomcat 8.5.0 < 8.5.50

HIGH 7.5 - - 138097 Apache Tomcat 8.5.0 < 8.5.56

HIGH 7.5 - - 138574 Apache Tomcat 8.5.0 < 8.5.57 multiple vulnerabilities

HIGH 7.5 - - 144054 Apache Tomcat 8.5.0 < 8.5.60 multiple vulnerabilities

HIGH 7.5 - - 147019 Apache Tomcat 8.5.0 < 8.5.63 multiple vulnerabilities

HIGH 7.5 - - 166807 Apache Tomcat 8.5.0 < 8.5.83

HIGH 7.5 - - 171656 Apache Tomcat 8.5.0 < 8.5.85

HIGH 7.5 - - 186364 Apache Tomcat 8.5.0 < 8.5.96

HIGH 7.5 - - 192043 Apache Tomcat 8.5.0 < 8.5.99 multiple vulnerabilities

HIGH 7.5 - - 160891 Apache Tomcat 8.5.38 < 8.5.79

HIGH 7.0 - - 132413 Apache Tomcat 8.5.0 < 8.5.49 multiple vulnerabilities

HIGH 7.0 - - 136807 Apache Tomcat 8.5.0 < 8.5.55

MEDIUM 6.5 - - 197847 Apache Tomcat 8.5.0 < 8.5.66

MEDIUM 6.1 - - 180192 Apache Tomcat 8.5.0 < 8.5.93

MEDIUM 5.9 - - 187315 SSH Terrapin Prefix Truncation Weakness (CVE-2023-48795)

192.168.199.128 4
MEDIUM 5.3 - - 194472 Apache Tomcat 8.5.0 < 8.5.64 multiple vulnerabilities

MEDIUM 5.3 - - 152183 Apache Tomcat 8.5.0 < 8.5.68

MEDIUM 5.3 - - 182811 Apache Tomcat 8.5.0 < 8.5.94 multiple vulnerabilities

MEDIUM 5.3 - - 12085 Apache Tomcat Default Files

MEDIUM 4.3 - - 197819 Apache Tomcat 8.5.0 < 8.5.58

MEDIUM 4.3 - - 173256 Apache Tomcat 8.5.0 < 8.5.86

LOW 3.7 - - 159462 Apache Tomcat 8.x < 8.5.78 Spring4Shell CVE-2021-43980

LOW N/A - - 178943 Apache Tomcat SEoL (8.5.x)

LOW 2.1* - - 10114 ICMP Timestamp Request Remote Date Disclosure

INFO N/A - - 48204 Apache HTTP Server Version

INFO N/A - - 39446 Apache Tomcat Detection

INFO N/A - - 39520 Backported Security Patch Detection (SSH)

INFO N/A - - 39521 Backported Security Patch Detection (WWW)

INFO N/A - - 45590 Common Platform Enumeration (CPE)

INFO N/A - - 54615 Device Type

INFO N/A - - 35716 Ethernet Card Manufacturer Detection

INFO N/A - - 86420 Ethernet MAC Addresses

INFO N/A - - 43111 HTTP Methods Allowed (per directory)

INFO N/A - - 10107 HTTP Server Type and Version

INFO N/A - - 24260 HyperText Transfer Protocol (HTTP) Information

INFO N/A - - 11219 Nessus SYN scanner

INFO N/A - - 19506 Nessus Scan Information

INFO N/A - - 11936 OS Identification

INFO N/A - - 117886 OS Security Patch Assessment Not Available

INFO N/A - - 181418 OpenSSH Detection

192.168.199.128 5
INFO N/A - - 66334 Patch Report

INFO N/A - - 70657 SSH Algorithms and Languages Supported

INFO N/A - - 149334 SSH Password Authentication Accepted

INFO N/A - - 10881 SSH Protocol Versions Supported

INFO N/A - - 153588 SSH SHA-1 HMAC Algorithms Enabled

INFO N/A - - 10267 SSH Server Type and Version Information

INFO N/A - - 22964 Service Detection

INFO N/A - - 25220 TCP/IP Timestamps Supported

INFO N/A - - 110723 Target Credential Status by Authentication Protocol - No


Credentials Provided

INFO N/A - - 10287 Traceroute Information

INFO N/A - - 66717 mDNS Detection (Local Network)

* indicates the v3.0 score was not


available; the v2.0 score is shown

192.168.199.128 6

You might also like