Description

This web server has a default welcome page. If you are not using this web server, it should be disabled because it may pose a security threat.

Remediation

If this server is not used, it is recommended to disable it.

References

Web Server Default Welcome Page

Related Vulnerabilities

phpBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2002-2346)

Tornado weak secret key

TLS/SSL (EC)DHE Key Reuse

WordPress 4.8.x Multiple Vulnerabilities (4.8 - 4.8.7)

Wildcard Detected in Domain Portion of Content Security Policy (CSP) Directive

Severity

Info

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Configuration