STIGQter: STIG Summary: Apache Server 2.4 Windows Server Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:

The Apache web server software must be a vendor-supported version.

DISA Rule

SV-214359r505936_rule

Vulnerability Number

V-214359

Group Title

SRG-APP-000516-WSR-000174

Rule Version

AS24-W1-000960

Severity

CAT I

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Install the current version of the web server software and maintain appropriate service packs and patches.

Check Contents

Determine the version of the Apache software that is running on the system.

In a command line, navigate to "<'INSTALLED PATH'>\bin". Run "httpd -v" to view the Apache version.

If the version of Apache is not at the following version or higher, this is a finding:

Apache 2.4 (February 2012)

Vulnerability Number

V-214359

Documentable

False

Rule Version

AS24-W1-000960

Severity Override Guidance

Determine the version of the Apache software that is running on the system.

In a command line, navigate to "<'INSTALLED PATH'>\bin". Run "httpd -v" to view the Apache version.

If the version of Apache is not at the following version or higher, this is a finding:

Apache 2.4 (February 2012)

Check Content Reference

M

Target Key

3998

Comments