NetScaler Gateway is Flagged as Vulnerable to Cross Frame Scripting (XFS) Attack

NetScaler Gateway VIP is being flagged as vulnerable to Cross Frame Scripting (also known as XFS or clickjacking)??weakness.

Run the following CLI commands to bind a global rewrite policy to insert the desired header:
add rewrite action REW_ACT_X_FRAME_OPTIONS insert_http_header X-Frame-Options "\"SAMEORIGIN\""
add rewrite policy POL_X_FRAME_OPTIONS "HTTP.REQ.HOSTNAME.CONTAINS(\"ageevpn.company.com\")" REW_ACT_X_FRAME_OPTIONS
bind rewrite global POL_X_FRAME_OPTIONS 100 END -type RES_DEFAULT

Note: The rewrite feature requires a NetScaler license.

The vulnerability scanning product is expecting the header X-FRAME-OPTIONS in the HTTP response.