Security For Everyone

Jolokia Version Disclosure Vulnerability Scanner

Jolokia contains an unauthenticated version disclosure vulnerability.

Short Info

Level

Medium

Single Scan

Can be used by

Asset Owner

Estimated Time

5 seconds

Time Interval

2 months 4 weeks

Scan only one

URL

Toolbox

-

Jolokia is an agent based approach for remote JMX access. It is an alternative to standard JSR 160 connectors. The communication between client and agent goes over HTTP (either GET or POST), where the request and response payload is represented in JSON. An attacker may identify a version disclosure in the target Jolokia web server's HTTP response.

An attacker might use the disclosed information to harvest specific security vulnerabilities for the version identified.

Get started to protecting your Free Full Security Scan

Start trial See the plans