The web application is accessible by typing its IP address directly into the browser. This can make it more difficult to properly secure, and can result in unintentional exposure of services not intended for end users. Disabling direct access to the server via its IP address may require setting up server name indication (SNI) for web applications served over HTTPS, or placing the server behind a proxy.
The web application is accessible by typing its IP address directly into the browser. This can make it more difficult to properly secure, and can result in unintentional exposure of services not intended for end users. Disabling direct access to the server via its IP address may require setting up server name indication (SNI) for web applications served over HTTPS, or placing the server behind a proxy.
Severity: Informational
CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
CVSS Score: 0.0
Recommendation: Disable direct access to the web application via the IP address of the server.