STIGQter STIGQter: STIG Summary: Oracle Database 11.2g Security Technical Implementation Guide Version: 1 Release: 17 Benchmark Date: 24 Jan 2020: Plans and procedures for testing DBMS installations, upgrades and patches must be defined and followed prior to production implementation.

DISA Rule

SV-68269r1_rule

Vulnerability Number

V-54029

Group Title

SRG-APP-000516-DB-999900

Rule Version

O112-BP-024700

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Develop, document and implement procedures for testing DBMS installations, upgrades and patches prior to deployment on production systems.

Check Contents

Review policy and procedures documented or noted in the System Security Plan and evidence of implementation for testing DBMS installations, upgrades and patches prior to production deployment.

If policy and procedures do not exist or evidence of implementation does not exist, this is a Finding.

Vulnerability Number

V-54029

Documentable

False

Rule Version

O112-BP-024700

Severity Override Guidance

Review policy and procedures documented or noted in the System Security Plan and evidence of implementation for testing DBMS installations, upgrades and patches prior to production deployment.

If policy and procedures do not exist or evidence of implementation does not exist, this is a Finding.

Check Content Reference

M

Target Key

2669

Comments