Error Message

This will vary based on the vulnerability scanner used to scan VIOM, but these messages may indicate executable permissions of a file owned by root.

The vulnerability scanners are highlighting possible vulnerabilities present with these Apache Tomcat files owned by root with executable permissions.  

The noted condition highlighted in this scan is resolved with VIOM 8.0.2.320. Please refer to Arctera Technical Support for the patch.

The solution implemented was to change the root ownership to its own tomcat user and then clean up the permissions associated to these files.

Vulnerability scanners detect a possible issue in Veritas Infoscale Operations Manager (VIOM) installations on Linux, with files and directories located at /opt/VRTSsfmcs/webgui/tomcat/ having root ownership and open permissions. These files are Apache Tomcat files associated with the VIOM webserver.

JIRA: STESC-8434