https://live.paloaltonetworks.com/t5/advanced-threat-prevention/check-and-help-resolving-vapt-reported-issues-global-protect-ssl/m-p/376158#M1006 <P>Please open a case with Support.</P> Thu, 24 Dec 2020 22:52:17 GMT mivaldi 2020-12-24T22:52:17Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/check-and-help-resolving-vapt-reported-issues-global-protect-ssl/m-p/374153#M996 <P>We have done VAPT on our Global protect URL link and identified 3 VA,<BR />Kindly check and help resolving this at earliest.</P><P>1) Absence of CSRF tokens :-</P><P>No Anti-CSRF tokens were found in a HTML submission form.<BR />A cross-site request forgery is an attack that involves forcing a victim to send an HTTP request to a target destination without their knowledge or intent in order to perform an action as the victim. The underlying cause is application functionality using predictable URL/form actions in a repeatable way. The nature of the attack is that CSRF exploits the trust that a web site has for a user. By contrast, cross-site scripting (XSS) exploits the trust that a user has for a web site. Like XSS, CSRF attacks are not necessarily cross-site, but they can be. Cross-site request forgery is also known as CSRF, XSRF, one-click attack, session riding, confused deputy, and sea surf.</P><P>&nbsp;</P><P>2) Missing secure Flag Attributes in the Encrypted Session (SSL) Cookie:-</P><P>The Session Cookie Does Not Have "Secure" Attribute.The Secure Attribute Tells The Browser To Only Use This Cookie Via Secure/Encrypted Connections. This measure makes certain client-side attacks, such as cross-site scripting, slightly harder to exploit by preventing them from trivially capturing the cookie's value via an injected script.</P><P><BR />3) Referrer-Policy Header is not implemented:-</P><P>It was observed that, Referrer-policy is not implemented in response header.<BR />Referrer-Policy is a security header designed to prevent cross-domain referrer leakage.</P><P><BR />Also, VAPT team has provided following links for 3 vulnerabilities</P><P>1) <A href="http://projects.webappsec.org/Cross-Site-Request-Forgery" target="_blank">http://projects.webappsec.org/Cross-Site-Request-Forgery</A><BR /><A href="http://cwe.mitre.org/data/definitions/352.html" target="_blank">http://cwe.mitre.org/data/definitions/352.html</A></P><P>&nbsp;</P><P>2) <A href="https://www.paladion.net/blogs/cookie-attributes-and-their-importance" target="_blank">https://www.paladion.net/blogs/cookie-attributes-and-their-importance</A><BR /><A href="https://www.maravis.com/protecting-web-application-cookies-by-restricting-scope/" target="_blank">https://www.maravis.com/protecting-web-application-cookies-by-restricting-scope/</A></P><P>&nbsp;</P><P>3) <A href="https://scotthelme.co.uk/a-new-security-header-referrer-policy/" target="_blank">https://scotthelme.co.uk/a-new-security-header-referrer-policy/</A></P> Mon, 14 Dec 2020 12:20:06 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/check-and-help-resolving-vapt-reported-issues-global-protect-ssl/m-p/374153#M996 PankajDhobe 2020-12-14T12:20:06Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/check-and-help-resolving-vapt-reported-issues-global-protect-ssl/m-p/376158#M1006 <P>Please open a case with Support.</P> Thu, 24 Dec 2020 22:52:17 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/check-and-help-resolving-vapt-reported-issues-global-protect-ssl/m-p/376158#M1006 mivaldi 2020-12-24T22:52:17Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/check-and-help-resolving-vapt-reported-issues-global-protect-ssl/m-p/508990#M1700 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/8358">@Pankaj</a>&nbsp; Did you find any answers on the question you had raised here ?&nbsp; our VAPT team raised the same concerns&nbsp;</P> Thu, 14 Jul 2022 19:44:34 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/check-and-help-resolving-vapt-reported-issues-global-protect-ssl/m-p/508990#M1700 phpatel 2022-07-14T19:44:34Z