Exception Report Disclosure (Tomcat)
Severity:
Low
Summary
Invicti identified an exception report disclosure (Tomcat) in the target web server's HTTP response.
Impact
An attacker can obtain information such as:
- Tomcat version.
- Physical file path of Tomcat files.
- Information about the generated exception.
Remediation
Apply the following configuration to your web.xml file to prevent information leakage by applying custom error pages.
<error-page> <error-code>500</error-code> <location>/server_error.html</location> </error-page>
Required Skills for Successful Exploitation
Actions To Take
Classifications
Vulnerability Index
You can search and find all vulnerabilities
Select Category
Select Vulnerability
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Select Vulnerability
Featured resources
Build your resistance to threats. And save hundreds of hours each month.
