Description

The current version of the remote Java virtual machine (JVM) is leaked in the Server header.

Remediation

Configure your server to prevent JVM version information from being leaked.

References

Java virtual machine

Related Vulnerabilities

Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5491)

WordPress Plugin MiwoFTP-File & Folder Manager Arbitrary File Disclosure (1.0.4)

WordPress Plugin Shopping Cart & eCommerce Store Information Disclosure (2.0.5)

WordPress Plugin Aspose PDF Exporter Arbitrary File Download (1.0)

Jira Unauthorized User Enumeration via UserPickerBrowser

Severity

Info

Classification

CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Information Disclosure