Summary

Netsparker identified a version disclosure (Oracle HTTP/Application Server) in target web server's HTTP response.

This information can help an attacker gain a greater understanding of the systems in use and potentially develop further attacks targeted at the specific version of Oracle HTTP/Application Server.

Impact
An attacker might use the disclosed information to harvest specific security vulnerabilities for the version identified.
Classifications
CAPEC-170, WASC-45 , CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N