OMC : Is Cloud Agent Vulnerable To HSTS Missing HTTPS Server (RFC 6797)?
(Doc ID 2966541.1)
Last updated on AUGUST 07, 2023
Applies to:Oracle Management Cloud - Version N/A to N/A [Release 1.0]
Information in this document applies to any platform.
In Oracle Management Cloud (OMC), receiving multiple vulnerabilities on Cloud Agent Servers regarding the HSTS Missing From HTTPS Server (RFC 6797) on 4459 port which needs to be fixed and configured on the remote server.
Error: The remote HTTPS server does not send the HTTP "Strict-Transport-Security" header.
Solution: Configure the remote web server to use HSTS.
Is Cloud Agent Vulnerable to this?
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document