logo

X-AspNet-Version Response Header

  • Risk:
  • Low

  • Type:
  • Passive
Summary

Server leaks information via “X-AspNet-Version”/“X-AspNetMvc-Version” HTTP response header field(s).

Solution

Configure the server so it will not return those headers.

Other info
An attacker can use this information to exploit known vulnerabilities.
References

https://www.troyhunt.com/shhh-dont-let-your-response-headers/

https://blogs.msdn.microsoft.com/varunm/2013/04/23/remove-unwanted-http-response-headers/

Free security scan for your website