[ClusterLabs] HSTS Missing From HTTPS Server on pcs daemon

S Sathish S s.s.sathish at ericsson.com
Mon Apr 3 09:37:15 EDT 2023


Hi Team,

In our product we are using pcs-0.10.15 version while running tenable scan found below vulnerability reported on 2224 pcsd daemon. Moreover we have disable PCSD Web UI in our application still vulnerability reported in the system.

Plugin ID : 84502
Plugin Name : HSTS Missing From HTTPS Server

Please provide any mitigation plan for this.

Thanks and Regards,
S Sathish S
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.clusterlabs.org/pipermail/users/attachments/20230403/572aa6b2/attachment.htm>


More information about the Users mailing list