STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The container platform must continuously scan components, containers, and images for vulnerabilities.

DISA Rule

SV-233275r599509_rule

Vulnerability Number

V-233275

Group Title

SRG-APP-000516

Rule Version

SRG-APP-000516-CTR-001335

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Implement continuous vulnerability scans of container platform components, containers, and container images either by the container platform or from external vulnerability scanning applications.

Check Contents

Review the container platform to validate continuous vulnerability scans of components, containers, and container images are being performed.

If continuous vulnerability scans are not being performed, this is a finding.

Vulnerability Number

V-233275

Documentable

False

Rule Version

SRG-APP-000516-CTR-001335

Severity Override Guidance

Review the container platform to validate continuous vulnerability scans of components, containers, and container images are being performed.

If continuous vulnerability scans are not being performed, this is a finding.

Check Content Reference

M

Target Key

5239

Comments