STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The container platform must limit privileges to the container platform runtime.

DISA Rule

SV-233067r599557_rule

Vulnerability Number

V-233067

Group Title

SRG-APP-000133

Rule Version

SRG-APP-000133-CTR-000295

Severity

CAT II

CCI(s)

• CCI-001499 - The organization limits privileges to change software resident within software libraries.

Weight

10

Fix Recommendation

Configure the container platform to use and enforce user privileges when accessing the container platform runtime.

Check Contents

Review the container platform runtime configuration to determine if the level of access to the runtime is controlled through user privileges.

Attempt to perform runtime operations to determine if the privileges are enforced.

If the container platform runtime is not limited through user privileges or the user privileges are not enforced, this is a finding.

Vulnerability Number

V-233067

Documentable

False

Rule Version

SRG-APP-000133-CTR-000295

Severity Override Guidance

Review the container platform runtime configuration to determine if the level of access to the runtime is controlled through user privileges.

Attempt to perform runtime operations to determine if the privileges are enforced.

If the container platform runtime is not limited through user privileges or the user privileges are not enforced, this is a finding.

Check Content Reference

M

Target Key

5239

Comments