Missing security header in management center (MINDBREEZE29662)

ID: MINDBREEZE29662 
Affected Components: Mindbreeze InSpire, Mindbreeze InSpire SaaS 
Severity: 3.9 Low 
Status: Final 
First published: April 28, 2025 
CVEs: MINDBREEZE29662 

Summary 

• Missing HTTP Strict Transport Security Policy and missing Cross Origin policy 

Hotfix Information 

Fixed with following versions of Mindbreeze InSpire On-Premises or Mindbreeze InSpire SaaS: 

• Mindbreeze InSpire 25.1 Release
• Mindbreeze InSpire Saas 25.1 Release