Objective

To assess and manage the exposure of internal (RFC 1918) IP addresses within the application.

Description

Internal (RFC 1918) IP addresses are exposed in the application. Ideally, such private IPs should not be publicly visible.

Reason

The display of IP addresses, hostnames, and MAC addresses is required for agent registration and communication, and therefore cannot be completely masked without impacting functionality.

Impact

• Exposure of internal network details
• Potential information disclosure risk

Recommendation

• Restrict application access to authorized users only
• Ensure deployment within secure network boundaries (VPN / internal network)
• Follow organizational security policies for handling internal IP exposure

Next Steps

• Upgrade to AE version 8.0.2 for Bootstrap-related fixes
• Upgrade to AE version 8.1.0 for file upload vulnerability resolution
• Manage internal IP visibility as per organization’s security guidelines

Note

• This behavior is by design and required for system functionality
• Complete masking is not feasible without affecting agent communication