Debugging functions TRACE and/or TRACK are enabled on the remote web server.
Article ID: 232095
Updated On:
Products
Security Analytics
Issue/Introduction
TRACE and TRACK should not be enabled and are considered a security vulnerability.
Environment
Version 8.2.4 and earlier
Resolution
This is a false positive in the tests. They are redirected to GET and POST and therefore will not produce debug output. The commands will be disabled in Security Analytics release 8.2.5 and later.
Feedback
Yes
No
Powered by
