STIGQter: STIG Summary: EDB Postgres Advanced Server Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:

The EDB Postgres Advanced Server must prevent non-privileged users from executing privileged functions, to include disabling, circumventing, or altering implemented security safeguards/countermeasures.

DISA Rule

SV-213617r508024_rule

Vulnerability Number

V-213617

Group Title

SRG-APP-000340-DB-000304

Rule Version

PPS9-00-007400

Severity

CAT II

CCI(s)

CCI-002235 - The information system prevents non-privileged users from executing privileged functions to include disabling, circumventing, or altering implemented security safeguards/countermeasures.

Weight

Fix Recommendation

Revoke any privileges to privileged functionality by executing the REVOKE command as documented here:

http://www.postgresql.org/docs/current/static/sql-revoke.html

Check Contents

Review the system documentation to obtain the definition of the database/DBMS functionality considered privileged in the context of the system in question.

If any functionality considered privileged has access privileges granted to non-privileged users, this is a finding.

Vulnerability Number

V-213617

Documentable

False

Rule Version

PPS9-00-007400

Severity Override Guidance

Check Content Reference

Target Key

3988

The EDB Postgres Advanced Server must prevent non-privileged users from executing privileged functions, to include disabling, circumventing, or altering implemented security safeguards/countermeasures.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments