During QUALYS Web Application Scanning of User System – Integration layer, if one is facing the below error during vulnerability scan, then follow the steps mentioned in the solution.
ID and Error
150018 Connection Error Occurred During Web Application Scan
Threat
The following are some of the possible reasons for the timeouts or connection errors:
1. A disturbance in network connectivity between the scanner and the web application occurred
2. The web server or application server hosting the application was taken down amid a scan
3. The web application experienced an overload, possibly due to the load generated by the scan
4. An error occurred in the SSL/TLS handshake (applies to HTTPS web applications only)
5. A security device, such as an IDS/IPS or web application firewall (WAF), began to drop or reject the HTTP connections from the scanner
6. Very large files like PDFs, videos, etc. are present on the site and caused timeouts when accessed by the scanner
Impact
Some of the links were not crawled or scanned. Scan results may be incomplete or incorrect.
Error in logs
weblogic.utils.NestedRuntimeException: Cannot parse POST parameters of request: ‘/<hostname>_console/consolejndi.portal’
Solution
Please follow the below options one and one to understand your exact issue.
- Confirm discovery scan has completed successfully
- Check servers are up and running. If yes, then perform a clean restart of the servers and rerun the scan
- Perform entire box restart of the servers and then rerun the scan
- Apply Weblogic patches 30109677 and 18561746 and then rerun the scan
SOA Solutions 