/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
You found there are certain security headers not returned back to the client, and claimed it is a vulnerability on CPI.
Read more...
Environment
- SAP Integration Suite
- SAP Business Technology Platform
- Cloud Integration
Product
Cloud Integration 4.0 ; SAP Cloud Platform Integration for process services 1.0 ; SAP Cloud Platform Integration for process services 3.0
Keywords
HTTP, SOAP, X-XSS-Protection, Cross-site Scripting, XSS, VAPT, content-type, prevent, Content-Security-Policy, header, insecure, security, HTML, vulnerability, victim, response body, client, Cloud Integration, x-content-type-options, nosniff, content-type, text/html, Cloud Foundry, CPI, HCI, NEO, CF, SAP Integration Suite , KBA , LOD-HCI-PI-CON-HTP , HTTP Adapter , LOD-HCI-PI-OPS , Cloud Operations , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)