The remote web server contains an application server that is prone to a privilege escalation flaw. Description : The remote web server uses a version of Zope which is older than version 2.3.3. In such versions, any user can visit a ZClass declaration and change the ZClass permission mappings for methods and other objects defined within the ZClass, possibly allowing for unauthorized access within the Zope instance. *** OVS solely relied on the version number of your server, so if *** the hotfix has already been applied, this might be a false positive
Upgrade to Zope 2.3.3 or apply the hotfix referenced in the vendor advisory above.