We found the following vulnerability / security concern in Service Desk Manager (SDM). How can we address it?

The remote web server supports the TRACE and/or TRACK methods. TRACE and TRACK are HTTP methods that are used to debug web server connections. 

Release : 17.3

The methods TRACK and TRACE can be disabled directly on the Tomcat web server.  The client is free to update the Tomcat configuration to suit their specific needs.

SDM does not use those methods and thus it will not have any effect on SDM.