- Community Home
- >
- Software
- >
- HPE OneView
- >
- OneView for vCenter Security vulnerability
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-12-2024 10:38 AM
03-12-2024 10:38 AM
OneView for vCenter Security vulnerability
The OneView for vCenter instance for my customer was flagged during a Qualys security scan for the following.
Qualys QID: 11827 HTTP Security Header not detected.
Has anyone seen that before and know how to fix the vulnerability?
They are using version 11.4
Thanks in advance
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-14-2024 04:14 AM
03-14-2024 04:14 AM
Re: OneView for vCenter Security vulnerability
Hi,
I think its more to do with VMware or Qualys, rather than OneView.
Have you consulted VMware or Qualys regarding this issue?
https://success.qualys.com/support/s/article/000006279
https://success.qualys.com/support/s/article/000006387
https://success.qualys.com/discussions/s/question/0D52L00004To0WSSAZ/how-does-one-resolve-qid11827-http-security-header-not-detected-for-vmware-esxi-670-build-16075168
Thank You!
I work with HPE but opinions expressed here are mine.
I work at HPE
HPE Support Center offers support for your HPE services and products when and how you need it. Get started with HPE Support Center today.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-19-2024 07:56 AM
03-19-2024 07:56 AM
Re: OneView for vCenter Security vulnerability
If Qualys reports this for OV4VC its clearly and OV4VC or Qualys issue. But why should this be a VMware issue?