My Oracle Support Banner

OMC : Is Cloud Agent Vulnerable To HSTS Missing HTTPS Server (RFC 6797)? (Doc ID 2966541.1)

Last updated on AUGUST 07, 2023

Applies to:

Oracle Management Cloud - Version N/A to N/A [Release 1.0]
Information in this document applies to any platform.


In Oracle Management Cloud (OMC), receiving multiple vulnerabilities on Cloud Agent Servers regarding the HSTS Missing From HTTPS Server (RFC 6797) on 4459 port which needs to be fixed and configured on the remote server.

Error: The remote HTTPS server does not send the HTTP "Strict-Transport-Security" header.

Solution: Configure the remote web server to use HSTS.

Is Cloud Agent Vulnerable to this?


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.