Contact us
Jump to content

Is WAR files kept in webapps folder is required post installation?

Madhavan TR

By Madhavan TR
in WebFOCUS

 Share
Go to solution Solved by Patrick Huebgen,

Recommended Posts

Madhavan TR Explorer

Madhavan TR

Posted
Posted

Background: We are using WEBFOCUS 82. Recently, when we ran vulnerability scan, we noticed the vulnerability "Vmware Spring: CVE-2022-22965: Spring Framework RCE via Data Binding" pointed to below files.

Action planned: We thought to keep below war files out of production server. This is with an assumption that below WAR files required only during redployment.

Query: Please suggest whether below WAR files can be moved out of production server or not. Thank you!!

<installation directory>webappswebfocus.war

<installation directory>webappswebfocus.war

<installation directory>worpcomponentsopsjsr168ops.war

<installation directory>webappsops286.war

<installation directory>webappsops286.war

  • Solution
Patrick Huebgen Proficient

Patrick Huebgen

Posted
  • Solution
Posted

just for clarification - if you confirmed step 4 from above link

4 Open xxx:ibitomcatconfCatalinalocalhostibi_apps.xml. If docBase does not include .war, your testing is complete.

You are safe to delete the war files

Madhavan TR Explorer

Madhavan TR

Posted
  • Author
Posted

Hi Patrick,

We tried the steps mentioned in the url. We assume, we can safely remove the WAR files out of production server and keep it back up server. Thank you for explanation!!

  1. We are using Apache Tomcat (confirmed via HTTP Request info)
  2. We are using Java 1.8 (confirmed via JVM Property Info)
  3. We are not using war file. (confirmed via ibi_apps.xml)

<?xml version="1.0" encoding="UTF-8"?>

<Context useHttpOnly="true" path="/ibi_apps" docBase="**********ibiWebFOCUS82webappswebfocus"> </Context>

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing
×
×
  • Create New...
© 2025 Cloud Software Group, Inc. All rights reserved.