STIGQter: STIG Summary: Oracle MySQL 8.0 Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 28 Jan 2021:

The MySQL Database Server 8.0 must protect its audit features from unauthorized removal.

DISA Rule

SV-235162r638812_rule

Vulnerability Number

V-235162

Group Title

SRG-APP-000123-DB-000204

Rule Version

MYS8-00-008200

Severity

CAT II

CCI(s)

• CCI-001495 - The information system protects audit tools from unauthorized deletion.

Weight

10

Fix Recommendation

This requirement is a permanent finding and cannot be fixed. An appropriate mitigation for the system must be implemented, but this finding cannot be considered fixed.

Check Contents

Check users with permissions to administer MySQL Auditing.

select * from information_schema.user_privileges where privilege_type = 'AUDIT_ADMIN';

If unauthorized accounts have these the AUDIT_ADMIN privilege, this is a finding.

Vulnerability Number

V-235162

Documentable

False

Rule Version

MYS8-00-008200

Severity Override Guidance

Check users with permissions to administer MySQL Auditing.

select * from information_schema.user_privileges where privilege_type = 'AUDIT_ADMIN';

If unauthorized accounts have these the AUDIT_ADMIN privilege, this is a finding.

Check Content Reference

M

Target Key

5277

Comments