Rowcroft-Servers Executive Summary.Pdf

Rowcroft-4.0 Vulnerability scanner

Report generated by Nessus™ Wed, 04 Dec 2019 14:40:43 GMT Standard Time TABLE OF CONTENTS

Hosts Executive Summary • 192.168.4.34...... 6 • 192.168.4.50...... 7 • 192.168.4.52...... 8 • 192.168.4.69...... 9 • 192.168.4.70...... 10 • 192.168.4.75...... 11 • 192.168.4.76...... 12 • 192.168.4.77...... 13 • 192.168.4.78...... 14 • 192.168.4.184...... 15 • 192.168.4.226...... 16 • 192.168.4.250...... 17 • 192.168.4.251...... 18 • 192.168.4.252...... 19 • 21x...... 20 • DoorEntry-01...... 21 • Sorce...... 22 • av-01.tq.rowcroft-hospice.org.uk...... 23 • comms-nas.tq.rowcroft-hospice.org.uk...... 24 • crosscare.tq.rowcroft-hospice.org.uk...... 25 • dc-01.tq.rowcroft-hospice.org.uk...... 26 • dc-02.tq.rowcroft-hospice.org.uk...... 28 • file-05.tq.rowcroft-hospice.org.uk...... 29 • file-06.tq.rowcroft-hospice.org.uk...... 30 • file-07.tq.rowcroft-hospice.org.uk...... 31 • file-08.tq.rowcroft-hospice.org.uk...... 32 • franking-ipu.tq.rowcroft-hospice.org.uk...... 33 • helpdesk-01.tq.rowcroft-hospice.org.uk...... 34 • intranet.tq.rowcroft-hospice.org.uk...... 35 • ipu-esx1.tq.rowcroft-hospice.org.uk...... 36 • ipu-esx2.tq.rowcroft-hospice.org.uk...... 37 • ipu-vc01.tq.rowcroft-hospice.org.uk...... 38 • m00144.tq.rowcroft-hospice.org.uk...... 39 • m00250.tq.rowcroft-hospice.org.uk...... 40 • m00260.tq.rowcroft-hospice.org.uk...... 41 • m00261.tq.rowcroft-hospice.org.uk...... 42 • ntp001.tq.rowcroft-hospice.org.uk...... 43 • rh-host-01.tq.rowcroft-hospice.org.uk...... 44 • sql-fin.tq.rowcroft-hospice.org.uk...... 45 • sql-fun.tq.rowcroft-hospice.org.uk...... 48 • sql-lottery.tq.rowcroft-hospice.org.uk...... 50 • storage-r1.tq.rowcroft-hospice.org.uk...... 51 • sw-l3-01.tq.rowcroft-hospice.org.uk...... 52 • sw015.tq.rowcroft-hospice.org.uk...... 53 • sw016.tq.rowcroft-hospice.org.uk...... 54 • sw022.tq.rowcroft-hospice.org.uk...... 55 • sw023.tq.rowcroft-hospice.org.uk...... 56 • sw024.tq.rowcroft-hospice.org.uk...... 57 • sw029.tq.rowcroft-hospice.org.uk...... 58 • update-01.tq.rowcroft-hospice.org.uk...... 59 • v01071.tq.rowcroft-hospice.org.uk...... 60 • v01072.tq.rowcroft-hospice.org.uk...... 61 • v01074.tq.rowcroft-hospice.org.uk...... 62 • v01210.tq.rowcroft-hospice.org.uk...... 63 • v01211.tq.rowcroft-hospice.org.uk...... 64 • v01212.tq.rowcroft-hospice.org.uk...... 65 • v01253.tq.rowcroft-hospice.org.uk...... 66 • v01254.tq.rowcroft-hospice.org.uk...... 67 • v01255.tq.rowcroft-hospice.org.uk...... 68 • v01256.tq.rowcroft-hospice.org.uk...... 69 • v01495.tq.rowcroft-hospice.org.uk...... 70 • v01496.tq.rowcroft-hospice.org.uk...... 71 • v01519-bmc.tq.rowcroft-hospice.org.uk...... 72 • vcenter-02.tq.rowcroft-hospice.org.uk...... 73 • vpn.rowcroft-hospice.org.uk...... 74 Hosts Executive Summary 192.168.4.34

1 2 5 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 8

SEVERITY CVSS PLUGIN NAME

CRITICAL 10.0 93650 Dropbear SSH Server < 2016.72 Multiple Vulnerabilities

HIGH 7.8 80101 IPMI v2.0 Password Hash Disclosure

HIGH 7.1 20007 SSL Version 2 and 3 Protocol Detection

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.8 42880 SSL / TLS Renegotiation Handshakes MiTM Plaintext Data Injection

MEDIUM 5.0 15901 SSL Certificate Expiry

MEDIUM 4.3 78479 SSLv3 Padding Oracle On Downgraded Legacy Encryption Vulnerability (POODLE)

192.168.4.34 6 192.168.4.50

0 1 2 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 3

SEVERITY CVSS PLUGIN NAME

HIGH 7.5 41028 SNMP Agent Default Community Name (public)

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

192.168.4.50 7 192.168.4.52

1 2 5 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 8

SEVERITY CVSS PLUGIN NAME

CRITICAL 10.0 93650 Dropbear SSH Server < 2016.72 Multiple Vulnerabilities

HIGH 7.8 80101 IPMI v2.0 Password Hash Disclosure

HIGH 7.1 20007 SSL Version 2 and 3 Protocol Detection

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.0 15901 SSL Certificate Expiry

MEDIUM 5.0 35291 SSL Certificate Signed Using Weak Hashing Algorithm

MEDIUM 4.3 78479 SSLv3 Padding Oracle On Downgraded Legacy Encryption Vulnerability (POODLE)

192.168.4.52 8 192.168.4.69

0 0 3 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 3

SEVERITY CVSS PLUGIN NAME

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 5.0 57608 SMB Signing not required

MEDIUM 5.0 45411 SSL Certificate with Wrong Hostname

192.168.4.69 9 192.168.4.70

0 1 3 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 4

SEVERITY CVSS PLUGIN NAME

HIGH 7.5 51368 iSCSI Unauthenticated Target Detection

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 5.0 57608 SMB Signing not required

MEDIUM 5.0 45411 SSL Certificate with Wrong Hostname

192.168.4.70 10 192.168.4.75

0 1 4 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 5

SEVERITY CVSS PLUGIN NAME

HIGH 7.1 20007 SSL Version 2 and 3 Protocol Detection

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.0 35291 SSL Certificate Signed Using Weak Hashing Algorithm

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

192.168.4.75 11 192.168.4.76

0 1 4 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 5

SEVERITY CVSS PLUGIN NAME

HIGH 7.1 20007 SSL Version 2 and 3 Protocol Detection

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.0 35291 SSL Certificate Signed Using Weak Hashing Algorithm

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

192.168.4.76 12 192.168.4.77

0 1 4 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 5

SEVERITY CVSS PLUGIN NAME

HIGH 7.1 20007 SSL Version 2 and 3 Protocol Detection

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.0 35291 SSL Certificate Signed Using Weak Hashing Algorithm

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

192.168.4.77 13 192.168.4.78

0 1 4 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 5

SEVERITY CVSS PLUGIN NAME

HIGH 7.1 20007 SSL Version 2 and 3 Protocol Detection

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.0 35291 SSL Certificate Signed Using Weak Hashing Algorithm

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

192.168.4.78 14 192.168.4.184

0 1 4 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 5

SEVERITY CVSS PLUGIN NAME

HIGH 7.5 41028 SNMP Agent Default Community Name (public)

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.8 42263 Unencrypted Telnet Server

MEDIUM 5.0 76474 SNMP 'GETBULK' Reflection DDoS

192.168.4.184 15 192.168.4.226

0 0 2 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 2

SEVERITY CVSS PLUGIN NAME

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

192.168.4.226 16 192.168.4.250

0 1 3 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 4

SEVERITY CVSS PLUGIN NAME

HIGH 7.8 80101 IPMI v2.0 Password Hash Disclosure

MEDIUM 6.4 43156 NTP ntpd Mode 7 Error Response Packet Loop Remote DoS

MEDIUM 5.0 97861 Network Time Protocol (NTP) Mode 6 Scanner

MEDIUM 5.0 71783 Network Time Protocol Daemon (ntpd) monlist Command Enabled DoS

192.168.4.250 17 192.168.4.251

1 2 14 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 17

SEVERITY CVSS PLUGIN NAME

CRITICAL 10.0 33850 Unix Operating System Unsupported Version Detection

HIGH 7.8 80101 IPMI v2.0 Password Hash Disclosure

HIGH 7.1 20007 SSL Version 2 and 3 Protocol Detection

MEDIUM 6.4 43156 NTP ntpd Mode 7 Error Response Packet Loop Remote DoS

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.0 97861 Network Time Protocol (NTP) Mode 6 Scanner

MEDIUM 5.0 71783 Network Time Protocol Daemon (ntpd) monlist Command Enabled DoS

MEDIUM 5.0 15901 SSL Certificate Expiry

MEDIUM 5.0 35291 SSL Certificate Signed Using Weak Hashing Algorithm

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

MEDIUM 4.3 90317 SSH Weak Algorithms Supported

MEDIUM 4.3 89058 SSL DROWN Attack Vulnerability (Decrypting RSA with Obsolete and Weakened eNcryption)

MEDIUM 4.3 26928 SSL Weak Cipher Suites Supported

MEDIUM 4.3 81606 SSL/TLS EXPORT_RSA <= 512-bit Cipher Suites Supported (FREAK)

MEDIUM 4.3 78479 SSLv3 Padding Oracle On Downgraded Legacy Encryption Vulnerability (POODLE)

MEDIUM 4.0 60108 SSL Certificate Chain Contains Weak RSA Keys

192.168.4.251 18 192.168.4.252

1 2 5 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 8

SEVERITY CVSS PLUGIN NAME

CRITICAL 10.0 93650 Dropbear SSH Server < 2016.72 Multiple Vulnerabilities

HIGH 7.8 80101 IPMI v2.0 Password Hash Disclosure

HIGH 7.1 20007 SSL Version 2 and 3 Protocol Detection

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.0 15901 SSL Certificate Expiry

MEDIUM 5.0 35291 SSL Certificate Signed Using Weak Hashing Algorithm

MEDIUM 4.3 78479 SSLv3 Padding Oracle On Downgraded Legacy Encryption Vulnerability (POODLE)

192.168.4.252 19 21x

0 1 5 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 6

SEVERITY CVSS PLUGIN NAME

HIGH 7.1 20007 SSL Version 2 and 3 Protocol Detection

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.0 57608 SMB Signing not required

MEDIUM 5.0 15901 SSL Certificate Expiry

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

21x 20 DoorEntry-01

0 0 2 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 2

SEVERITY CVSS PLUGIN NAME

MEDIUM 5.0 57608 SMB Signing not required

MEDIUM 5.0 25926 Sybase ASA Client Connection Broadcast Remote Information Disclosure

DoorEntry-01 21 Sorce

0 0 3 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 3

SEVERITY CVSS PLUGIN NAME

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

Sorce 22 av-01.tq.rowcroft-hospice.org.uk

0 0 1 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 1

SEVERITY CVSS PLUGIN NAME

MEDIUM 5.0 15901 SSL Certificate Expiry

av-01.tq.rowcroft-hospice.org.uk 23 comms-nas.tq.rowcroft-hospice.org.uk

0 0 4 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 4

SEVERITY CVSS PLUGIN NAME

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 5.0 57608 SMB Signing not required

MEDIUM 5.0 45411 SSL Certificate with Wrong Hostname

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

comms-nas.tq.rowcroft-hospice.org.uk 24 crosscare.tq.rowcroft-hospice.org.uk

1 0 8 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 9

SEVERITY CVSS PLUGIN NAME

CRITICAL 10.0 125313 Microsoft RDP RCE (CVE-2019-0708) (BlueKeep) (uncredentialed check)

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.1 18405 Microsoft Windows Remote Desktop Protocol Server Man-in-the-Middle Weakness

MEDIUM 5.0 57608 SMB Signing not required

MEDIUM 5.0 35291 SSL Certificate Signed Using Weak Hashing Algorithm

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

MEDIUM 4.3 58453 Terminal Services Doesn't Use Network Level Authentication (NLA) Only

MEDIUM 4.3 57690 Terminal Services Encryption Level is Medium or Low

crosscare.tq.rowcroft-hospice.org.uk 25 dc-01.tq.rowcroft-hospice.org.uk

5 14 14 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 33

SEVERITY CVSS PLUGIN NAME

CRITICAL 10.0 93226 Microsoft Excel Viewer Unsupported Version Detection

CRITICAL 10.0 119612 Security Updates for Microsoft .NET Framework (December 2018)

CRITICAL 10.0 122234 Security Updates for Microsoft .NET Framework (February 2019)

CRITICAL 10.0 117431 Security Updates for Microsoft .NET Framework (September 2018)

CRITICAL 10.0 101365 Windows 8.1 and Windows Server 2012 R2 July 2017 Security Updates

HIGH 9.3 130909 KB4525250: Windows 8.1 and Windows Server 2012 R2 November 2019 Security Update

HIGH 9.3 55125 MS11-045: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2537146)

HIGH 9.3 63420 MS13-002: Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code Execution (2756145)

HIGH 9.3 87253 MS15-124: Cumulative Security Update for Internet Explorer (3116180)

HIGH 9.3 101371 Security Update for Microsoft Office Products (July 2017)

HIGH 9.3 121025 Security Updates for Microsoft Office Viewer Products (January 2019)

HIGH 9.3 118926 Security Updates for Microsoft Office Viewer Products (November 2018)

HIGH 9.3 111698 Security Updates for Microsoft Office Viewer Products / Office Compatibility Products (August 2018)

HIGH 9.3 111008 Security Updates for Microsoft Office Viewer Products / Office Compatibility Products (July 2018)

HIGH 9.3 118012 Security Updates for Microsoft Office Viewer Products / Office Compatibility Products (October 2018)

HIGH 8.3 81264 MS15-011: Vulnerability in Group Policy Could Allow Remote Code Execution (3000483) dc-01.tq.rowcroft-hospice.org.uk 26 HIGH 7.6 104892 Security Updates for Internet Explorer (June 2017)

HIGH 7.6 130912 Security Updates for Internet Explorer (November 2019)

HIGH 7.1 20007 SSL Version 2 and 3 Protocol Detection

MEDIUM 6.8 126600 Security Updates for Microsoft .NET Framework (July 2019)

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.0 12217 DNS Server Cache Snooping Remote Information Disclosure

MEDIUM 5.0 35372 DNS Server Dynamic Update Record Injection

MEDIUM 5.0 45411 SSL Certificate with Wrong Hostname

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

MEDIUM 5.0 111693 Security Updates for Microsoft .NET Framework (August 2018)

MEDIUM 5.0 121021 Security Updates for Microsoft .NET Framework (January 2019)

MEDIUM 5.0 125074 Security Updates for Microsoft .NET Framework (May 2019)

MEDIUM 5.0 105731 Security and Quality Rollup for .NET Framework (January 2018)

MEDIUM 4.6 109652 Security Updates for Microsoft .NET Framework (May 2018)

MEDIUM 4.3 78447 MS KB3009008: Vulnerability in SSL 3.0 Could Allow Information Disclosure (POODLE)

MEDIUM 4.3 117422 Security Updates for Microsoft Office Viewer Products (September 2018)

dc-01.tq.rowcroft-hospice.org.uk 27 dc-02.tq.rowcroft-hospice.org.uk

0 1 5 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 6

SEVERITY CVSS PLUGIN NAME

HIGH 7.1 20007 SSL Version 2 and 3 Protocol Detection

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 5.0 12217 DNS Server Cache Snooping Remote Information Disclosure

MEDIUM 5.0 35372 DNS Server Dynamic Update Record Injection

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

MEDIUM 4.3 78479 SSLv3 Padding Oracle On Downgraded Legacy Encryption Vulnerability (POODLE)

dc-02.tq.rowcroft-hospice.org.uk 28 file-05.tq.rowcroft-hospice.org.uk

0 2 12 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 14

SEVERITY CVSS PLUGIN NAME

HIGH 7.5 10882 SSH Protocol Version 1 Session Key Retrieval

HIGH 7.1 20007 SSL Version 2 and 3 Protocol Detection

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.0 97861 Network Time Protocol (NTP) Mode 6 Scanner

MEDIUM 5.0 10988 Novell NetWare ncp Service NDS Object Enumeration

MEDIUM 5.0 57608 SMB Signing not required

MEDIUM 5.0 15901 SSL Certificate Expiry

MEDIUM 5.0 35291 SSL Certificate Signed Using Weak Hashing Algorithm

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

MEDIUM 4.3 66848 SSL Null Cipher Suites Supported

MEDIUM 4.3 26928 SSL Weak Cipher Suites Supported

MEDIUM 4.3 81606 SSL/TLS EXPORT_RSA <= 512-bit Cipher Suites Supported (FREAK)

MEDIUM 4.3 78479 SSLv3 Padding Oracle On Downgraded Legacy Encryption Vulnerability (POODLE)

file-05.tq.rowcroft-hospice.org.uk 29 file-06.tq.rowcroft-hospice.org.uk

0 1 10 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 11

SEVERITY CVSS PLUGIN NAME

HIGH 7.1 20007 SSL Version 2 and 3 Protocol Detection

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.0 97861 Network Time Protocol (NTP) Mode 6 Scanner

MEDIUM 5.0 10988 Novell NetWare ncp Service NDS Object Enumeration

MEDIUM 5.0 15901 SSL Certificate Expiry

MEDIUM 5.0 35291 SSL Certificate Signed Using Weak Hashing Algorithm

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

MEDIUM 4.3 90317 SSH Weak Algorithms Supported

MEDIUM 4.3 66848 SSL Null Cipher Suites Supported

MEDIUM 4.3 78479 SSLv3 Padding Oracle On Downgraded Legacy Encryption Vulnerability (POODLE)

file-06.tq.rowcroft-hospice.org.uk 30 file-07.tq.rowcroft-hospice.org.uk

0 1 12 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 13

SEVERITY CVSS PLUGIN NAME

HIGH 7.1 20007 SSL Version 2 and 3 Protocol Detection

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.0 97861 Network Time Protocol (NTP) Mode 6 Scanner

MEDIUM 5.0 57608 SMB Signing not required

MEDIUM 5.0 15901 SSL Certificate Expiry

MEDIUM 5.0 35291 SSL Certificate Signed Using Weak Hashing Algorithm

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

MEDIUM 4.3 90317 SSH Weak Algorithms Supported

MEDIUM 4.3 66848 SSL Null Cipher Suites Supported

MEDIUM 4.3 26928 SSL Weak Cipher Suites Supported

MEDIUM 4.3 81606 SSL/TLS EXPORT_RSA <= 512-bit Cipher Suites Supported (FREAK)

MEDIUM 4.3 78479 SSLv3 Padding Oracle On Downgraded Legacy Encryption Vulnerability (POODLE)

file-07.tq.rowcroft-hospice.org.uk 31 file-08.tq.rowcroft-hospice.org.uk

0 1 12 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 13

SEVERITY CVSS PLUGIN NAME

HIGH 7.1 20007 SSL Version 2 and 3 Protocol Detection

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.0 97861 Network Time Protocol (NTP) Mode 6 Scanner

MEDIUM 5.0 10988 Novell NetWare ncp Service NDS Object Enumeration

MEDIUM 5.0 15901 SSL Certificate Expiry

MEDIUM 5.0 35291 SSL Certificate Signed Using Weak Hashing Algorithm

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

MEDIUM 4.3 90317 SSH Weak Algorithms Supported

MEDIUM 4.3 66848 SSL Null Cipher Suites Supported

MEDIUM 4.3 26928 SSL Weak Cipher Suites Supported

MEDIUM 4.3 81606 SSL/TLS EXPORT_RSA <= 512-bit Cipher Suites Supported (FREAK)

MEDIUM 4.3 78479 SSLv3 Padding Oracle On Downgraded Legacy Encryption Vulnerability (POODLE)

file-08.tq.rowcroft-hospice.org.uk 32 franking-ipu.tq.rowcroft-hospice.org.uk

0 0 1 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 1

SEVERITY CVSS PLUGIN NAME

MEDIUM 5.8 50686 IP Forwarding Enabled

franking-ipu.tq.rowcroft-hospice.org.uk 33 helpdesk-01.tq.rowcroft-hospice.org.uk

0 1 3 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 4

SEVERITY CVSS PLUGIN NAME

HIGH 7.5 118039 Java JMX Agent Insecure Configuration

MEDIUM 5.8 50686 IP Forwarding Enabled

MEDIUM 5.0 12085 Apache Tomcat Default Files

MEDIUM 4.3 90317 SSH Weak Algorithms Supported

helpdesk-01.tq.rowcroft-hospice.org.uk 34 intranet.tq.rowcroft-hospice.org.uk

0 1 4 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 5

SEVERITY CVSS PLUGIN NAME

HIGH 7.1 20007 SSL Version 2 and 3 Protocol Detection

MEDIUM 5.0 45411 SSL Certificate with Wrong Hostname

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

MEDIUM 4.3 89058 SSL DROWN Attack Vulnerability (Decrypting RSA with Obsolete and Weakened eNcryption)

MEDIUM 4.3 78479 SSLv3 Padding Oracle On Downgraded Legacy Encryption Vulnerability (POODLE)

intranet.tq.rowcroft-hospice.org.uk 35 ipu-esx1.tq.rowcroft-hospice.org.uk

0 0 2 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 2

SEVERITY CVSS PLUGIN NAME

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

ipu-esx1.tq.rowcroft-hospice.org.uk 36 ipu-esx2.tq.rowcroft-hospice.org.uk

0 0 2 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 2

SEVERITY CVSS PLUGIN NAME

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

ipu-esx2.tq.rowcroft-hospice.org.uk 37 ipu-vc01.tq.rowcroft-hospice.org.uk

0 0 1 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 1

SEVERITY CVSS PLUGIN NAME

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

ipu-vc01.tq.rowcroft-hospice.org.uk 38 m00144.tq.rowcroft-hospice.org.uk

0 0 3 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 3

SEVERITY CVSS PLUGIN NAME

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 5.0 15901 SSL Certificate Expiry

MEDIUM 4.3 90317 SSH Weak Algorithms Supported

m00144.tq.rowcroft-hospice.org.uk 39 m00250.tq.rowcroft-hospice.org.uk

0 0 2 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 2

SEVERITY CVSS PLUGIN NAME

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

m00250.tq.rowcroft-hospice.org.uk 40 m00260.tq.rowcroft-hospice.org.uk

0 0 3 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 3

SEVERITY CVSS PLUGIN NAME

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 5.0 57608 SMB Signing not required

m00260.tq.rowcroft-hospice.org.uk 41 m00261.tq.rowcroft-hospice.org.uk

0 0 4 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 4

SEVERITY CVSS PLUGIN NAME

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 5.0 57608 SMB Signing not required

MEDIUM 5.0 15901 SSL Certificate Expiry

MEDIUM 4.3 90317 SSH Weak Algorithms Supported

m00261.tq.rowcroft-hospice.org.uk 42 ntp001.tq.rowcroft-hospice.org.uk

0 0 4 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 4

SEVERITY CVSS PLUGIN NAME

MEDIUM 5.8 50686 IP Forwarding Enabled

MEDIUM 5.8 42263 Unencrypted Telnet Server

MEDIUM 5.0 97861 Network Time Protocol (NTP) Mode 6 Scanner

MEDIUM 5.0 71783 Network Time Protocol Daemon (ntpd) monlist Command Enabled DoS

ntp001.tq.rowcroft-hospice.org.uk 43 rh-host-01.tq.rowcroft-hospice.org.uk

1 1 5 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 7

SEVERITY CVSS PLUGIN NAME

CRITICAL 10.0 33850 Unix Operating System Unsupported Version Detection

HIGH 7.2 99129 ESXi 5.5 < Build 5230635 Multiple Vulnerabilities (VMSA-2017-0006) (remote check)

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.0 105486 ESXi 5.5 / 6.0 / 6.5 / Multiple Vulnerabilities (VMSA-2017-0021) (VMSA-2018-0002) (Spectre) (remote check)

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

MEDIUM 4.7 111759 ESXi 5.5 / 6.0 / 6.5 / 6.7 Speculative Execution Side Channel Vulnerability (Foreshadow) (VMSA-2018-0020) (remote check)

MEDIUM 4.4 92949 ESXi 5.0 / 5.1 / 5.5 / 6.0 Multiple Vulnerabilities (VMSA-2016-0010) (remote check)

rh-host-01.tq.rowcroft-hospice.org.uk 44 sql-fin.tq.rowcroft-hospice.org.uk

9 13 24 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 46

SEVERITY CVSS PLUGIN NAME

CRITICAL 10.0 89757 MS16-035: Security Update for .NET Framework to Address Security Feature Bypass (3141780)

CRITICAL 10.0 91605 MS16-077: Security Update for WPAD (3165191)

CRITICAL 10.0 94017 MS16-120: Security Update for Microsoft Graphics Component (3192884)

CRITICAL 10.0 64784 Microsoft SQL Server Unsupported Version Detection

CRITICAL 10.0 62758 Microsoft XML Parser (MSXML) and XML Core Services Unsupported

CRITICAL 10.0 40362 Mozilla Foundation Unsupported Application Detection

CRITICAL 10.0 119612 Security Updates for Microsoft .NET Framework (December 2018)

CRITICAL 10.0 122234 Security Updates for Microsoft .NET Framework (February 2019)

CRITICAL 10.0 117431 Security Updates for Microsoft .NET Framework (September 2018)

HIGH 9.3 130909 KB4525250: Windows 8.1 and Windows Server 2012 R2 November 2019 Security Update

HIGH 9.3 62311 KeyWorks KeyHelp ActiveX Control Multiple Vulnerabilities

HIGH 9.3 53382 MS11-025: Vulnerability in Microsoft Foundation Class (MFC) Library Could Allow Remote Code Execution (2500212)

HIGH 9.3 87253 MS15-124: Cumulative Security Update for Internet Explorer (3116180)

HIGH 9.3 91596 MS16-063: Cumulative Security Update for Internet Explorer (3163649)

HIGH 9.3 103137 Security and Quality Rollup for .NET Framework (Sep 2017)

HIGH 9.0 91604 MS16-076: Security Update for Netlogon (3167691)

HIGH 8.3 81264 MS15-011: Vulnerability in Group Policy Could Allow Remote Code Execution (3000483)

sql-fin.tq.rowcroft-hospice.org.uk 45 HIGH 7.6 104892 Security Updates for Internet Explorer (June 2017)

HIGH 7.6 130912 Security Updates for Internet Explorer (November 2019)

HIGH 7.2 65057 Insecure Windows Service Permissions

HIGH 7.2 99365 Security and Quality Rollup for .NET Framework (April 2017)

HIGH 7.1 20007 SSL Version 2 and 3 Protocol Detection

MEDIUM 6.9 58333 MS12-021: Vulnerability in Visual Studio Could Allow Elevation of Privilege (2651019)

MEDIUM 6.8 130170 Mozilla Firefox < 70.0 Multiple Vulnerabilities

MEDIUM 6.8 126600 Security Updates for Microsoft .NET Framework (July 2019)

MEDIUM 6.5 94637 MS16-136: Security Update for SQL Server (3199641)

MEDIUM 6.4 51192 SSL Certificate Cannot Be Trusted

MEDIUM 6.4 57582 SSL Self-Signed Certificate

MEDIUM 6.2 93471 MS16-112: Security Update for Windows Lock Screen (3178469)

MEDIUM 5.1 18405 Microsoft Windows Remote Desktop Protocol Server Man-in-the-Middle Weakness

MEDIUM 5.0 88651 MS16-019: Security Update for .NET Framework to Address Denial of Service (3137893)

MEDIUM 5.0 92022 MS16-091: Security Update for .NET Framework (3170048)

MEDIUM 5.0 35291 SSL Certificate Signed Using Weak Hashing Algorithm

MEDIUM 5.0 45411 SSL Certificate with Wrong Hostname

MEDIUM 5.0 42873 SSL Medium Strength Cipher Suites Supported (SWEET32)

MEDIUM 5.0 111693 Security Updates for Microsoft .NET Framework (August 2018)

MEDIUM 5.0 121021 Security Updates for Microsoft .NET Framework (January 2019)

MEDIUM 5.0 125074 Security Updates for Microsoft .NET Framework (May 2019)

MEDIUM 5.0 105731 Security and Quality Rollup for .NET Framework (January 2018)

MEDIUM 5.0 100056 Security and Quality Rollup for .NET Framework (May 2017)

MEDIUM 4.6 109652 Security Updates for Microsoft .NET Framework (May 2018) sql-fin.tq.rowcroft-hospice.org.uk 46 MEDIUM 4.3 78447 MS KB3009008: Vulnerability in SSL 3.0 Could Allow Information Disclosure (POODLE)

MEDIUM 4.3 91014 MS16-065: Security Update for .NET Framework (3156757)

MEDIUM 4.3 78479 SSLv3 Padding Oracle On Downgraded Legacy Encryption Vulnerability (POODLE)

MEDIUM 4.3 58453 Terminal Services Doesn't Use Network Level Authentication (NLA) Only

MEDIUM 4.3 57690 Terminal Services Encryption Level is Medium or Low

sql-fin.tq.rowcroft-hospice.org.uk 47 sql-fun.tq.rowcroft-hospice.org.uk

4 7 17 0 0

CRITICAL HIGH MEDIUM LOW INFO

Vulnerabilities Total: 28