X-AspNet-Version Response Header

Risk:
Low

Type:
Passive

Summary: Server leaks information via “X-AspNet-Version”/“X-AspNetMvc-Version” HTTP response header field(s).

Solution: Configure the server so it will not return those headers.

Other info: An attacker can use this information to exploit known vulnerabilities.

References

https://www.troyhunt.com/shhh-dont-let-your-response-headers/

https://blogs.msdn.microsoft.com/varunm/2013/04/23/remove-unwanted-http-response-headers/

Free security scan for your website

Don't show website scan report rating on the leaderboard