Oracle GlassFish Server 3.0.1.x < 22.214.171.124 / 3.1.2.x < 126.96.36.199 (October 2017 CPU)
High Nessus Plugin ID 103962
SynopsisThe remote web server is affected by multiple vulnerabilities.
DescriptionAccording to its self-reported version, the Oracle GlassFish Server running on the remote host is 3.0.1.x prior to 188.8.131.52 or 3.1.2.x prior to 184.108.40.206. It is, therefore, affected by multiple vulnerabilities, including multiple denial of service vulnerabilities and unauthorized access to sensitive data.
SolutionUpgrade to Oracle GlassFish Server version 220.127.116.11 / 18.104.22.168 or later as referenced in the October 2017 Oracle Critical Patch Update advisory.