AnsweredAssumed Answered

Need help fixing a vulnerability flagged by a Nessus scan

Question asked by mias on Apr 17, 2018
Latest reply on May 9, 2018 by DavidM

Hi, my security team has run a nessus scanner on the UIM main hub.  One of the main issues they identified is on port 8080 the "apache tomcat default files" needs to be removed.  Have any of you dealt with this type of issue before, I dont really want to fiddle in the UIM installation files?  Should I log a defect against the product?

 

I checked on my installation on port 8080/index.jsp is the main " Welcome to UIM Server 8.4" page. Not sure if they refer to this, as they dont provide that much detail.  Maybe a quick fix would be to turn this tomcat off on port 8080 as we do not access it.

Outcomes