Hello,
I upgraded CSM 4.19 to 4.22 SP1 to be covered from the CVE-2020-27131 vulnerability.
The thing is that the scan finds again this vulnerability.
The customer informed me that this path
- cwhp/CSMSDesktop/about.jsp
triggers the vulnerability in Qualys.
Should I remove it? Is it possible to block access to that page?
Regards,
Konstantinos
