CVE-2025-58406 Lack of HTTP Response Headers

The CGM CLININET application respond without essential security HTTP headers, exposing users to client‑side attacks such as clickjacking, MIME sniffing, unsafe caching, weak cross‑origin isolation, and missing transport security controls...

IBM Security Verify Governance 安全漏洞

IBM Security Verify Governance is an intelligent identity access platform from International Business Machines IBM, Inc. provides organizations with a platform to analyze, define and control user access and access risk. An information disclosure vulnerability exists in IBM Security verify...

CVE-2022-3259

Openshift 4.9 does not use HTTP Strict Transport Security HSTS which may allow man-in-the-middle MITM attacks...

PT-2019-13371 · One Identity · One Identity Cloud Access Manager

Name of the Vulnerable Software and Affected Versions: One Identity Cloud Access Manager version 8.1.3 Description: The issue allows man-in-the-middle MITM attacks due to the lack of HTTP Strict Transport Security HSTS. Recommendations: For One Identity Cloud Access Manager version 8.1.3, update ...