Description
In Eclipse Kura versions up to 4.0.0, Kura exposes the underlying Ui Web server version in its replies. This can be used as a hint by an attacker to specifically craft attacks to the web server run by Kura.
Remediation
References
https://bugs.eclipse.org/bugs/show_bug.cgi?id=545834
http://www.securityfocus.com/bid/107844
Related Vulnerabilities
CVE-2020-2207 Vulnerability in maven package org.jenkins-ci.plugins:vncviewer
CVE-2023-30513 Vulnerability in maven package org.csanchez.jenkins.plugins:kubernetes
CVE-2020-13943 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core
CVE-2023-34615 Vulnerability in maven package net.pwall.json:jsonutil
CVE-2020-27196 Vulnerability in maven package com.typesafe.play:play-java