STIGQter STIGQter: STIG Summary: Oracle Database 12c Security Technical Implementation Guide Version: 1 Release: 16 Benchmark Date: 24 Jan 2020: Application role permissions must not be assigned to the Oracle PUBLIC role.

DISA Rule

SV-75933r1_rule

Vulnerability Number

V-61443

Group Title

SRG-APP-000516-DB-999900

Rule Version

O121-BP-022800

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Revoke role grants from PUBLIC.

Do not assign role privileges to PUBLIC.

From SQL*Plus:

revoke [role name] from PUBLIC;

Check Contents

From SQL*Plus:

select granted_role from dba_role_privs where grantee = 'PUBLIC';

If any roles are listed, this is a finding.

Vulnerability Number

V-61443

Documentable

False

Rule Version

O121-BP-022800

Severity Override Guidance

From SQL*Plus:

select granted_role from dba_role_privs where grantee = 'PUBLIC';

If any roles are listed, this is a finding.

Check Content Reference

M

Target Key

2679

Comments