Description

This web server has a default welcome page. If you are not using this web server, it should be disabled because it may pose a security threat.

Remediation

If this server is not used, it is recommended to disable it.

References

Web Server Default Welcome Page

Related Vulnerabilities

ASP.NET ASPX debugging enabled

WordPress 5.5.x Multiple Vulnerabilities (5.5 - 5.5.5)

MongoDB HTTP status interface

WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.16)

PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3412)

Severity

Info

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Configuration