Security question - urgent

V M

• May 17, 2023 06:11

Hi team - we have concern from a customer for urgent request to remove the following vulnerability. Site devic.greenbox.com.au on brizzy cloud. 

Plug in ID 107456 Apple Mac OS X Find-By-Content .DS_Store Web Directory Listing 

Plug in ID 142960 HSTS Missing From HTTPS Server (RFC 6797)

Here are the details. 

GreenBox website

Wed, 17 May 2023 01:55:14 UTC

Tenable.io completed the scan GreenBox website.

Report Summary

Plugins: Top 5

Severity	Plugin Id	Name
Medium	10756	Apple Mac OS X Find-By-Content .DS_Store Web Directory Listing
Medium	142960	HSTS Missing From HTTPS Server (RFC 6797)

Thanks a lot 

0

• 

  KC George

  • May 18, 2023 05:20
  • Edited

  Hi Viraj,

  These two vulnerabilities have been escalated to our developers. We will work on fixing it. We hope to get back to you soon when we make some progress.

  0
• 

  V M

  • May 18, 2023 06:42

  Hi George - thanks a lot. Can we please address this urgently or advise how to fix them? Our customer will not allow the site to go live and it's urgent please. 

  0
• 

  Ariel H.

  • May 18, 2023 13:11

  Hi Viraj,

  Thank you for waiting. 

  Unfortunately, resolving it will take longer than expected, and we anticipate it will require at least one week to implement a proper fix.

  I apologize for any inconvenience this may cause you.  Our team is working hard to address the problem, but its complexity requires more time to ensure a permanent solution.

   If there's anything else we can do to assist you during this time, please let us know.

  Best regards,
  Ariel H.

  0

Please sign in to leave a comment.