Skip main navigation (Press Enter).

Automic Workload Automation

View Only

Back to discussions

Expand all | Collapse all

AWI Jetty Vulnerability disable HTTP OPTIONS Method Enabled

BEN BAEZ6 hours ago

Hello Community, Has anyone found out how to properly disable HTTP Options on the Jetty web interface ...

Daryl Brown5 hours ago

I'm very interested in the answer to this, too. We have our AWI running with an https:// URL, but the ...

1. AWI Jetty Vulnerability disable HTTP OPTIONS Method Enabled

Recommend
BEN BAEZ
Posted 6 hours ago

Reply Reply Privately
Hello Community,

Has anyone found out how to properly disable HTTP Options on the Jetty web interface that comes with Automic? I can find it for about every other interface except this one. I've tried adding security restraints in the uc4config.xml but this hasn't worked to remedy the vulnerability. Thanks for any input.

Ben

-------------------------------------------
2. RE: AWI Jetty Vulnerability disable HTTP OPTIONS Method Enabled

Recommend
Daryl Brown
Posted 5 hours ago

Reply Reply Privately
I'm very interested in the answer to this, too. We have our AWI running with an https:// URL, but the http:// address is still working too.

I've emailed Broadcom support about this (related to some other AWI/Jetty questions) but am still awaiting on response on this.
-------------------------------------------

Original Message

Copyright 2025. All rights reserved.

Powered by Higher Logic

Global message icon