3378794 - Missing HTTP Security Headers on HANA XSA Port 30030

Symptom

After penetration test, you observed Missing of HSTS Header, Missing of X-Frame-Options Header, and Missing of X-Content Type Header on the HANA XSA host 30030.

Environment

SAP HANA extended application services, advanced model (XSA)

Keywords

Missing of HSTS Header, Missing of X-Frame-Options Header, and Missing of X-Content Type Header, 30030 , KBA , BC-XS-RT , XS Advanced Runtime / XS Controller , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.