NetScaler Gateway VIP is being flagged as vulnerable to Cross Frame Scripting (also known as XFS or clickjacking) weakness.

Run the following CLI commands to bind a global rewrite policy to insert the desired header:
add rewrite action REW_ACT_X_FRAME_OPTIONS insert_http_header X-Frame-Options "\"SAMEORIGIN\""
add rewrite policy POL_X_FRAME_OPTIONS "HTTP.REQ.HOSTNAME.CONTAINS(\"ageevpn.company.com\")" REW_ACT_X_FRAME_OPTIONS
bind rewrite global POL_X_FRAME_OPTIONS 100 END -type RES_DEFAULT

Note: The rewrite feature requires a NetScaler license.

Problem Cause

The vulnerability scanning product is expecting the header X-FRAME-OPTIONS in the HTTP response.