Technology Stack - EBS (MOSC)

MOSC Banner

ISO Vulnerability Report?

edited Aug 20, 2021 11:53AM in Technology Stack - EBS (MOSC) 3 commentsAnswered ✓

Dear Team,

I have been tasked to address below issues as reported by the ISO team.

Kindly seeking ideas on how to resolve the issues;

1. Clickjacking: X-Frame-Options header missing

2. Content Security Policy (CSP) not implemented

3. Server directory traversal

4. Password type input with auto-complete enabled

5. Sensitive Data Exposure

We are on;

1. Database: 11.2.0.4.0

2. Applicaion: 12.1.3

3. SSL implemented at load balancer level

Thank you all.

Howdy, Stranger!

Log In

To view full details, sign in to My Oracle Support Community.

Register

Don't have a My Oracle Support Community account? Click here to get started.

Category Leaderboard

Top contributors this month

New to My Oracle Support Community? Visit our Welcome Center

MOSC Help Center