STIGQter: STIG Summary: MS Exchange 2013 Edge Transport Server Security Technical Implementation Guide Version: 1 Release: 5 Benchmark Date: 26 Apr 2019:

Exchange must have the most current, approved service pack installed.

DISA Rule

SV-84557r1_rule

Vulnerability Number

V-69935

Group Title

SRG-APP-000456

Rule Version

EX13-EG-000350

Severity

CAT II

CCI(s)

• CCI-002605 - The organization installs security-relevant software updates within an organization-defined time period of the release of the updates.

Weight

10

Fix Recommendation

Install the most current, approved service pack.

Check Contents

Open the Exchange Management Shell and enter the following command:

Get-ExchangeServer | fl name, AdminDisplayVersion

If the value of AdminDisplayVersion does not return the most current, approved service pack, this is a finding.

Vulnerability Number

V-69935

Documentable

False

Rule Version

EX13-EG-000350

Severity Override Guidance

Open the Exchange Management Shell and enter the following command:

Get-ExchangeServer | fl name, AdminDisplayVersion

If the value of AdminDisplayVersion does not return the most current, approved service pack, this is a finding.

Check Content Reference

M

Target Key

3099

Comments