Question

Security Vulnerabilities

Hello All,

As part of our organisation process during the upgrade (8.2.2), we have to perform the analysis of security vulnerabilities using the ibm App scan tool. In that to validate the vulnerabilities, we saw that it complained about the missing header. I also did by adding the header in the DSS as mentioned in the other thread. It did not help.

X-Content-Type-Options":"nosniff"

Thanks & Regards,

Bharath

Comments

Keep up to date on this post and subscribe to comments

September 17, 2019 - 12:44pm

The issue still available after the recommendations of another thread added as well. So any kind of help is appreciated

Pega
September 17, 2019 - 4:03pm

Hi BHARATHB
We would be happy to assist with the header setting issue you are seeing but we would need to see additional information.  Given this is security related we would recommend that you open a support request where you can share information securely with our Global Client Support team.

Please reference this post in your SR and let us know the SR Id here so the moderation team can keep an eye on it for you.

September 18, 2019 - 1:26am
Response to BAGGP

hi Baggp,

Thanks for the suggestion. I have just classified it as security in general and not a security concern from the data to share it here, but we can still discuss about it in the forum if we know the steps to configure it. I am not sure if a SR is required at this moment. If still recommended, I need to check with Cisco & Pega account administrative on the same.

Thanks & Regards,

Bharath