2025-12-02 17:59:05
HCL
PUBLISHED
The BigFix SaaSs HTTP responses were missing some security headers. The absence of these headers weakens the applications client-side security posture, making it more vulnerable to common web attacks that these headers are designed to mitigate, such as Cross-Site Scripting (XSS), Clickjacking, and protocol downgrade attacks.