HTTP TRACE method showing available on wasp probe

book

Article ID: 208979

calendar_today

Updated On:

Products

DX Infrastructure Management

Issue/Introduction

A security scan has shown that the wasp is accepting HTTP TRACE protocol; this should be disabled as it is used for debugging and can lead to security risk if it is left enabled on a public-facing server.

 

 

Environment

Release : 20.3

Component : UIM - SECURITY VULNERABILITIES

Resolution

This is resolved in 20.3.2 - please apply the 20.3.2 patches from the UIM Hotfix Index site.

Additional Information

UIM Hotfix Index Site