STIGQter: STIG Summary: VMware vRealize Operations Manager 6.x tc Server Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 28 Sep 2018:

tc Server ALL must have all mappings to unused and vulnerable scripts to be removed.

DISA Rule

SV-99565r1_rule

Vulnerability Number

V-88915

Group Title

SRG-APP-000141-WSR-000082

Rule Version

VROM-TC-000375

Severity

CAT II

CCI(s)

• CCI-000381 - The organization configures the information system to provide only essential capabilities.

Weight

10

Fix Recommendation

Document the removal of all script mappings that are not needed for web server and hosted application operation and ensure the web server configuration does not contain any script mappings that are not needed for web server and hosted application operation.

Check Contents

Obtain supporting documentation from the ISSO.

Review the web server documentation and deployed configuration to determine if all mappings to unused and vulnerable scripts to be removed.

If all mappings to unused and vulnerable scripts have not been removed, this is a finding.

Vulnerability Number

V-88915

Documentable

False

Rule Version

VROM-TC-000375

Severity Override Guidance

Obtain supporting documentation from the ISSO.

Review the web server documentation and deployed configuration to determine if all mappings to unused and vulnerable scripts to be removed.

If all mappings to unused and vulnerable scripts have not been removed, this is a finding.

Check Content Reference

M

Target Key

3441

Comments