1886474 - Server version information is visible in the HTTP response

Symptom

Server information appears in HTTP response when accessing JAVA engine resources.

Example from Google Chrome dev tools:

Environment

SAP NetWeaver Application Server Java

Product

SAP NetWeaver Application Server for Java all versions

Keywords

vulnerability security header j2ee engine version name https show display reveal console "SAP J2EE Engine" "SAP J2EE Engine/7.00" "SAP J2EE Engine/7.01" "SAP J2EE Engine/7.02", broadcast, scan, visible, can be seen , KBA , BC-JAS-WEB , Web Container, HTTP, JavaMail, Servlets , EP-PIN-PRT , Portal Runtime , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.