Oracle GlassFish Server 3.0.1.x < 188.8.131.52 / 3.1.2.x < 184.108.40.206 (October 2017 CPU)
High Nessus Plugin ID 103962
SynopsisThe remote web server is affected by multiple vulnerabilities.
DescriptionAccording to its self-reported version, the Oracle GlassFish Server running on the remote host is 3.0.1.x prior to 220.127.116.11 or 3.1.2.x prior to 18.104.22.168. It is, therefore, affected by multiple vulnerabilities, including multiple denial of service vulnerabilities and unauthorized access to sensitive data.
SolutionUpgrade to Oracle GlassFish Server version 22.214.171.124 / 126.96.36.199 or later as referenced in the October 2017 Oracle Critical Patch Update advisory.