UPK 12.1: Fixing Security Misconfiguration With UPK Knowledge Center
Last updated on APRIL 27, 2017
Applies to:User Productivity Kit - Version 184.108.40.206 to 220.127.116.11 [Release 12.1]
Information in this document applies to any platform.
Oracle UPK Knowledge Center needs to meet the required security standards as a web based application.
The assessment was performed for vulnerabilities relevant to the OWASP Top 10 from 2013. The Vulnerabilities detected under "Security Misconfiguration" classification are as below:
1. Missing "content Security Policy” Header
2. Missing x-Content type option header
3. Missing "XSS Protection Header"
4. Missing HTTP Strict transport security Header
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms