STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The container platform must prevent non-privileged users from executing privileged functions to include disabling, circumventing, or altering implemented security safeguards/countermeasures.

DISA Rule

SV-233162r599617_rule

Vulnerability Number

V-233162

Group Title

SRG-APP-000340

Rule Version

SRG-APP-000340-CTR-000770

Severity

CAT II

CCI(s)

• CCI-002235 - The information system prevents non-privileged users from executing privileged functions to include disabling, circumventing, or altering implemented security safeguards/countermeasures.

Weight

10

Fix Recommendation

Configure the container platform to security to protect all privileged functionality. Assigning roles that limit what actions a particular user can perform are the most common means of meeting this requirement.

Check Contents

Review documentation to obtain the definition of the container platform functionality considered privileged in the context of the information system in question.

Review the container platform security configuration and/or other means used to protect privileged functionality from unauthorized use.

If the configuration does not protect all of the actions defined as privileged, this is a finding.

Vulnerability Number

V-233162

Documentable

False

Rule Version

SRG-APP-000340-CTR-000770

Severity Override Guidance

Review documentation to obtain the definition of the container platform functionality considered privileged in the context of the information system in question.

Review the container platform security configuration and/or other means used to protect privileged functionality from unauthorized use.

If the configuration does not protect all of the actions defined as privileged, this is a finding.

Check Content Reference

M

Target Key

5239

Comments