How to address QID: 11827 vulnerability

Sofia_ · ‎09-29-2020

Hello,

Can someone please share on how to address QID: 11827 vulnerability on HPE SIM?

Qualys complaining about HTTP Security Header Not Detected

X-XSS-Protection HTTP Header missing on port 50001. GET / HTTP/1.1 Host: hostname:50001 Connection: Keep-Alive HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Pragma: No-cache Cache-Control: no-store

Thanks in advance,

Sofia

BH_S · ‎09-30-2020

Hello Sofia,

To address the issue with QID: 11827 vulnerability , I would first request you to bring SIM to supported version v7.6

Please check SIM Matrix document :

https://support.hpe.com/hpesc/public/docDisplay?docId=emr_na-c04273185

Kindly update to latest SIM 7.6 LR4 update and check status

If still vulnerability reported kindly log a support case by capturing latest simcapture logs and screenshot of issue reported.

Thanks,

HPE Employee.

I am an HP Employee

Sofia_ · ‎10-05-2020

Hello BH_S,

Thank you for your reply.

How did you know we are running one version behind?

Btw, do you have any documentation on how to upgrade from v7.5 to 7.6?

Many thanks in advance,

Sofia

How to address QID: 11827 vulnerability

How to address QID: 11827 vulnerability

Re: How to address QID: 11827 vulnerability

Re: How to address QID: 11827 vulnerability

Hewlett Packard Enterprise International