Описание
The response header has not enabled X-FRAME-OPTIONS, Which helps prevents against Clickjacking attack.. Some browsers would interpret these results incorrectly, allowing clickjacking attacks.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat OpenShift Container Platform 4 | openshift | Out of support scope |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-1021
https://bugzilla.redhat.com/show_bug.cgi?id=2106780Openshift: Missing X-Frame-Options Header
6.5 Medium
CVSS3
Связанные уязвимости
CVSS3: 4.8
nvd
около 3 лет назад
The response header has not enabled X-FRAME-OPTIONS, Which helps prevents against Clickjacking attack.. Some browsers would interpret these results incorrectly, allowing clickjacking attacks.
CVSS3: 4.8
github
около 3 лет назад
The response header has not enabled X-FRAME-OPTIONS, Which helps prevents against Clickjacking attack.. Some browsers would interpret these results incorrectly, allowing clickjacking attacks.
6.5 Medium
CVSS3