AnsweredAssumed Answered

Hot to fix "HTTP Security Header Not Detected" vulnerability on HP iLO & HP3PAR devices?

Question asked by Shrikant Bhade on Aug 31, 2018
Latest reply on Aug 31, 2018 by Shyam Raj

Vulnerability Details:

1) Title: HTTP Security Header Not Detected

2) OS: HP iLO & HP3PAR

3) Port: 443

4) Result:

X-XSS-Protection HTTP Header missing on port 443.
GET / HTTP/1.1
Host: X.X.X.X
Connection: Keep-Alive

X-Content-Type-Options HTTP Header missing on port 443.
Content-Security-Policy HTTP Header missing on port 443.
Strict-Transport-Security HTTP Header missing on port 443.

Outcomes