Forum Discussion

Bigtibi's avatar
Bigtibi
New Contributor
2 months ago
Solved

Vulnerabilities found in SoapUI 5.9.1

Hi there,
I installed SoapUI 5.9.1 on one of our servers.
Following the installation, the attached Java (Maven) vulnerabilities were found in the SoapUI directory using Qualys.
When is a version expected in which these vulnerabilities will be fixed?
If this wait will be long, how can I fix these vulnerabilities myself?
Best regards
Tibor

  • Humashankar's avatar
    Humashankar
    3 days ago

    Hi Bigtibi​ 

    No official fixes published yet, to mitigate on your side by hardening the server (network isolation, least‑privilege, no direct internet exposure) are really a bit hard to move forward.

    Best Regards.

2 Replies

  • Humashankar's avatar
    Humashankar
    Icon for Champion Level 3 rankChampion Level 3
    3 days ago

    Hi Bigtibi​ 

    No official fixes published yet, to mitigate on your side by hardening the server (network isolation, least‑privilege, no direct internet exposure) are really a bit hard to move forward.

    Best Regards.

    • Bigtibi's avatar
      Bigtibi
      New Contributor
      1 day ago

      Hi Humashankar
      Thank you for the information.
      For the time being, we are adding these vulnerabilities to our exception list.
      Best regards,