The web server reveals information about itself, for example the name of the server software running on the system, but does not include any version information. This can present a security risk by informing attackers whether or not the system is running old, deprecated or vulnerable software. Even though only the name of the server software is revealed (e.g. apache2 or nginx) this information can help attackers refine their attack strategies or launch spraying attacks which attempt to exploit a multitude of vulnerabilities specific to a piece of server software in quick succession. The server can reveal information about itself in non-standard response headers such as X-Powered-By (which gives the name of the running server software) or X-AspNet-Version which reveals a particular version of ASP.NET as the technology powering the web application and by extension that the web server is very likely to be IIS-based.
The web server reveals information about itself, for example the name of the server software running on the system, but does not include any version information. This can present a security risk by informing attackers whether or not the system is running old, deprecated or vulnerable software. Even though only the name of the server software is revealed (e.g. apache2 or nginx) this information can help attackers refine their attack strategies or launch spraying attacks which attempt to exploit a multitude of vulnerabilities specific to a piece of server software in quick succession. The server can reveal information about itself in non-standard response headers such as X-Powered-By (which gives the name of the running server software) or X-AspNet-Version which reveals a particular version of ASP.NET as the technology powering the web application and by extension that the web server is very likely to be IIS-based.
Severity: Informational
CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N
CVSS Score: 0.0
Recommendation: Disable all headers etc. that might reveal information about the web server.