Scanned with HP Web Inspect

Question

My web app was recently DAST scanned and one of the vulnerabilities was "Missing Cross-Frame Scripting Protection"..  Does the ASM protect against that?  if not can someone explain?&nbsp;

erik_novak · Answer

This is an interesting situation that occurs from time to time when the description of a vulnerability discovered by a scanner is slightly different than the wording for an ASM violation. ASM would most likely mitigate this vulnerability by either applying cross site scripting signatures, or by suggesting that you turn on Cross Site Request Forgery protection, or both.

Forum Discussion

Scanned with HP Web Inspect

1 Reply

Recent Discussions

minimum tmos software version for connect CIS (openshift)

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5 Rseries HA

Need advise to setup a policy on F5

F5 Rseries R2600 Tenant sizing

Related Content

OWASP Automated Threats - OAT-014 Vulnerability Scanning

Protecting the F5 BIG-IP AFM system with AFM Protocol Inspection System Checks

Advanced iRules: Scan

AFM Protocol Inspection rules for CVE-2022-3602 (aka SpookySSL)

Advanced iRules: Binary Scan