STIGQter: STIG Summary: Application Server Security Requirements Guide Version: 2 Release: 7 Benchmark Date: 25 Oct 2019: The application server must remove organization-defined software components after updated versions have been installed.

DISA Rule

SV-71839r2_rule

Vulnerability Number

V-57563

Group Title

SRG-APP-000454-AS-000268

Rule Version

SRG-APP-000454-AS-000268

Severity

CAT II

CCI(s)

CCI-002617 - The organization removes organization-defined software components (e.g., previous versions) after updated versions have been installed.

Weight

Fix Recommendation

Configure the application server to remove organization-defined software components after updated versions have been installed.

Check Contents

Review the application server documentation and configuration to determine if organization-defined software components are removed after updated versions have been installed.

If organization-defined software components are not removed after updated versions have been installed, this is a finding.

STIGQter: STIG Summary: Application Server Security Requirements Guide Version: 2 Release: 7 Benchmark Date: 25 Oct 2019: The application server must remove organization-defined software components after updated versions have been installed.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments