STIGQter STIGQter: STIG Summary: Adobe ColdFusion 11 Security Technical Implementation Guide Version: 1 Release: 4 Benchmark Date: 26 Jan 2018:

ColdFusion must have Request Debugging Output disabled.

DISA Rule

SV-77021r1_rule

Vulnerability Number

V-62531

Group Title

SRG-APP-000266-AS-000169

Rule Version

CF11-06-000220

Severity

CAT I

CCI(s)

Weight

10

Fix Recommendation

Navigate to the "Debug Output Settings" page under the "Debugging & Output Settings" menu. Uncheck "Enable Request Debugging Output" and select the "Submit Changes" button.

Check Contents

Within the Administrator Console, navigate to the "Debug Output Settings" page under the "Debugging & Output Settings" menu.

If "Enable Request Debugging Output" is checked, this is a finding.

Vulnerability Number

V-62531

Documentable

False

Rule Version

CF11-06-000220

Severity Override Guidance

Within the Administrator Console, navigate to the "Debug Output Settings" page under the "Debugging & Output Settings" menu.

If "Enable Request Debugging Output" is checked, this is a finding.

Check Content Reference

M

Target Key

2661

Comments