Problem Note 63483: Security headers are missing in the response from the Present Screen feature of the SASĀ® Visual Analytics App
Severity: Medium
Description: These security headers are missing in the response from the Present Screen feature of the SAS Visual Analytics App:
- X-Frame-Options
- X-XSS-Protection
- X-Content-Type-Options
Potential Impact: The app might allow a cross-site scripting or clickjacking attack.
Download the latest release of the app from Google Play or the Apple App store.
Operating System and Release Information
| SAS System | SAS Visual Analytics App | Android Operating System | 8.3 | 8.33 | | |
| Apple Mobile Operating System | 8.3 | 8.35 | | |
*
For software releases that are not yet generally available, the Fixed
Release is the software release in which the problem is planned to be
fixed.
Some security headers are missing in the response from the Present Screen feature of the SAS Visual Analytics App. To resolve this issue, download the latest release of the app from the store (Google Play or Apple).
| Type: | Problem Note |
| Priority: | medium |
| Date Modified: | 2019-02-27 15:01:33 |
| Date Created: | 2019-01-14 22:21:28 |
