Qualys scan report shows one SEV 3 ( QID: 86763) vulnerability as below:
Reported problem is about Tomcat and use of port of 8080, which is an HTTP protocol.
As this use depends on your configuration, it's not something we can help with. You would need to update and configure with SSL settings and provide the correct certificate.
Instructions are in our Documentation for the release you are on: Refer to section "Upgrade, Reconfigure, or Back-Up ARD Hub"