STIGQter: STIG Summary: Mainframe Product Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020:

The Mainframe Product must remove all upgraded/replaced software components that are no longer required for operation after updated versions have been installed.

DISA Rule

SV-82973r1_rule

Vulnerability Number

V-68483

Group Title

SRG-APP-000454-MFP-000343

Rule Version

SRG-APP-000454-MFP-000343

Severity

CAT II

CCI(s)

• CCI-002617 - The organization removes organization-defined software components (e.g., previous versions) after updated versions have been installed.

Weight

10

Fix Recommendation

Configure the Mainframe Product to remove all upgraded/replaced software components that are no longer required for operation.

Check Contents

Examine inventory of installed software components for the Mainframe Product.

If the Mainframe Product does not remove all upgraded/replaced software components that are no longer required for operation, this is a finding.

Vulnerability Number

V-68483

Documentable

False

Rule Version

SRG-APP-000454-MFP-000343

Severity Override Guidance

Examine inventory of installed software components for the Mainframe Product.

If the Mainframe Product does not remove all upgraded/replaced software components that are no longer required for operation, this is a finding.

Check Content Reference

M

Target Key

3061

Comments