My Oracle Support Banner

Multiple Cross-Site Scripting Vulnerabilities Detected in Oracle API Gateway (Doc ID 2733637.1)

Last updated on DECEMBER 18, 2020

Applies to:

Oracle API Gateway - Version 11.1.2.4.0 and later
Information in this document applies to any platform.

Symptoms

In OAG, there have been multiple Cross-Site Scripting Vulnerabilities detected on the ports that the gateway is listening on.  In this use case, the security rules implemented make it necessary to correct this in the environment.


Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Cause
Solution


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.