Josegar74

**Name of the Vulnerable Software and Affected Versions** GeoNetwork versions prior to 4.2.10 GeoNetwork versions prior to 4.4.5 **Description** The search endpoint response headers in GeoNetwork contain information about the Elasticsearch software in use, allowing the software used by the server to be easily identified. This information is valuable from a security point of view. **Recommendations** For versions prior to 4.2.10, update to version 4.2.10 or later to fix the issue. For versions prior to 4.4.5, update to version 4.4.5 or later to fix the issue.