STIGQter: STIG Summary: VMware ESXi Server 5.0 Security Technical Implementation Guide Version: 1 Release: 10 Benchmark Date: 27 Jan 2017: The system must have USB disabled unless needed.

DISA Rule

SV-51104r1_rule

Vulnerability Number

V-39288

Group Title

GEN008460

Rule Version

GEN008460-ESXI5-000121

Severity

CAT III

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

To modify hardware enabled options: Interrupt the host computer's boot process and enter the BIOS menu. Inspect the menu option for USB device connectivity. Disable USB.

Check Contents

If the system uses USB, this is not applicable.

To verify hardware enabled options: Interrupt the host computer's boot process and enter the BIOS menu. Inspect the menu option for USB device connectivity.

If the system does not require USB and USB is enabled, this is a finding.

Vulnerability Number

V-39288

Documentable

False

Rule Version

GEN008460-ESXI5-000121

Severity Override Guidance

If the system uses USB, this is not applicable.

To verify hardware enabled options: Interrupt the host computer's boot process and enter the BIOS menu. Inspect the menu option for USB device connectivity.

If the system does not require USB and USB is enabled, this is a finding.

Check Content Reference

M

Target Key

2370

Comments