I have 2 standalone FGT200E firewalls running 6.1.15, for the last month
Qualys has failed the PCI ASV scan with a detected vulnerability
QID150004 Predictable Resource Location Via Forced Browsing, its finding
an /image/ fileRESULT:url: https://x.x....
Hi pminarik, think you've saved me a tac case, i concur with your
findings , i could see the redirect but wondered why qualys didnt follow
it.I was struggling to discover if the qualys output should list the
actual files in the /images/ folder but al...
Hi Toshi, this happened at the start of July when our monthly ASV scans
failed, it had been working perfectly well until that point on 6.4.15The
ASV scanning vendor are pretty useless when it comes to the actual
mechanics of Qualys ASV scansI guess t...
Hi Anthony, No IPsec dialup isnt viable not all my devices support it.
It seems to be specific to the /images/ folder, which when i put in the
browser took me to the web signin page after a re-direct, when i applied
the "removing the html body" in th...
