Item Search

NameAudit NamePluginCategory
AIOS-15-009700 - Apple iOS/iPadOS 15 must not allow non-DoD applications to access DoD data.MobileIron - DISA Apple iOS/iPadOS 14 v1r4MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-15-009700 - Apple iOS/iPadOS 15 must not allow non-DoD applications to access DoD data.AirWatch - DISA Apple iOS/iPadOS 14 v1r4MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-16-009700 - Apple iOS/iPadOS 16 must not allow non-DoD applications to access DoD data.AirWatch - DISA Apple iOS/iPadOS 16 v2r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-16-009700 - Apple iOS/iPadOS 16 must not allow non-DoD applications to access DoD data.MobileIron - DISA Apple iOS/iPadOS 16 v2r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-16-709700 - Apple iOS/iPadOS 16 must not allow non-DOD applications to access DOD data.AirWatch - DISA Apple iOS/iPadOS 16 BYOAD v1r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-16-709700 - Apple iOS/iPadOS 16 must not allow non-DOD applications to access DOD data.MobileIron - DISA Apple iOS/iPadOS BYOAD 16 v1r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-16-714900 - Apple iOS/iPadOS 16 must not allow DOD applications to access non-DOD data.AirWatch - DISA Apple iOS/iPadOS 16 BYOAD v1r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-16-714900 - Apple iOS/iPadOS 16 must not allow DOD applications to access non-DOD data.MobileIron - DISA Apple iOS/iPadOS BYOAD 16 v1r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-17-009700 - Apple iOS/iPadOS 17 must not allow non-DOD applications to access DOD data.MobileIron - DISA Apple iOS/iPadOS 17 v2r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-17-009700 - Apple iOS/iPadOS 17 must not allow non-DOD applications to access DOD data.AirWatch - DISA Apple iOS/iPadOS 17 v2r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-17-709700 - Apple iOS/iPadOS 17 must not allow non-DOD applications to access DOD data.MobileIron - DISA Apple iOS/iPadOS BYOAD 17 v1r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-17-709700 - Apple iOS/iPadOS 17 must not allow non-DOD applications to access DOD data.AirWatch - DISA Apple iOS/iPadOS 17 BYOAD v1r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-17-714900 - Apple iOS/iPadOS 17 must not allow DOD applications to access non-DOD data.MobileIron - DISA Apple iOS/iPadOS BYOAD 17 v1r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

AIOS-17-714900 - Apple iOS/iPadOS 17 must not allow DOD applications to access non-DOD data.AirWatch - DISA Apple iOS/iPadOS 17 BYOAD v1r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

CD12-00-003600 - Execution of software modules (to include functions and trigger procedures) with elevated privileges must be restricted to necessary cases only.DISA STIG Crunchy Data PostgreSQL DB v3r1PostgreSQLDB

ACCESS CONTROL

CNTR-R2-001130 Rancher RKE2 must prevent nonprivileged users from executing privileged functions to include disabling, circumventing, or altering implemented security safeguards/countermeasures.DISA Rancher Government Solutions RKE2 STIG v2r2Unix

ACCESS CONTROL

DKER-EE-003200 - Docker Enterprise images must be built with the USER instruction to prevent containers from running as root.DISA STIG Docker Enterprise 2.x Linux/Unix v2r2Unix

ACCESS CONTROL

EP11-00-007500 - Execution of software modules (to include stored procedures, functions, and triggers) with elevated privileges must be restricted to necessary cases only.EDB PostgreSQL Advanced Server v11 DB Audit v2r4PostgreSQLDB

ACCESS CONTROL

EP11-00-007510 - Execution of software modules (to include stored procedures, functions, and triggers) with elevated privileges must be restricted to necessary cases only.EDB PostgreSQL Advanced Server v11 DB Audit v2r4PostgreSQLDB

ACCESS CONTROL

EPAS-00-007500 - Execution of software modules (to include stored procedures, functions, and triggers) with elevated privileges must be restricted to necessary cases only.EnterpriseDB PostgreSQL Advanced Server DB v2r1PostgreSQLDB

ACCESS CONTROL

GEN000520 - The root user must not own the logon session for an application requiring a continuous display.DISA STIG Solaris 10 X86 v2r4Unix

ACCESS CONTROL

GEN000520 - The root user must not own the logon session for an application requiring a continuous display.DISA STIG Solaris 10 SPARC v2r4Unix

ACCESS CONTROL

GEN000920 - The root account's home directory (other than /) must have mode 0700.DISA STIG Solaris 10 X86 v2r4Unix

ACCESS CONTROL

GEN000920 - The root account's home directory (other than /) must have mode 0700.DISA STIG Solaris 10 SPARC v2r4Unix

ACCESS CONTROL

GOOG-12-008900 - Google Android 12 must be configured to disable exceptions to the access control policy that prevent [selection: application processes, groups of application processes] from accessing [selection: all, private] data stored by other [selection: application processes, groups of application processes].AirWatch - DISA Google Android 12 COPE v1r2MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

GOOG-12-008900 - Google Android 12 must be configured to disable exceptions to the access control policy that prevent [selection: application processes, groups of application processes] from accessing [selection: all, private] data stored by other [selection: application processes, groups of application processes].MobileIron - DISA Google Android 12 COPE v1r2MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

GOOG-13-008900 - Google Android 13 must be configured to disable exceptions to the access control policy that prevent [selection: application processes, groups of application processes] from accessing [selection: all, private] data stored by other [selection: application processes, groups of application processes].AirWatch - DISA Google Android 13 COPE v2r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

GOOG-13-008900 - Google Android 13 must be configured to disable exceptions to the access control policy that prevent [selection: application processes, groups of application processes] from accessing [selection: all, private] data stored by other [selection: application processes, groups of application processes].MobileIron - DISA Google Android 13 COPE v2r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

GOOG-13-708900 - Google Android 13 must be configured to disable exceptions to the access control policy that prevent [selection: application processes, groups of application processes] from accessing [selection: all, private] data stored by other [selection: application processes, groups of application processes].AirWatch - DISA Google Android 13 BYOD v1r2MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

GOOG-13-708900 - Google Android 13 must be configured to disable exceptions to the access control policy that prevent [selection: application processes, groups of application processes] from accessing [selection: all, private] data stored by other [selection: application processes, groups of application processes].MobileIron - DISA Google Android 13 BYOD v1r2MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

GOOG-14-008900 - Google Android 14 must be configured to disable exceptions to the access control policy that prevent [selection: application processes, groups of application processes] from accessing [selection: all, private] data stored by other [selection: application processes, groups of application processes].MobileIron - DISA Google Android 14 COPE v2r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

GOOG-14-008900 - Google Android 14 must be configured to disable exceptions to the access control policy that prevent [selection: application processes, groups of application processes] from accessing [selection: all, private] data stored by other [selection: application processes, groups of application processes].AirWatch - DISA Google Android 14 COPE v2r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

GOOG-14-708900 - Google Android 14 must be configured to disable exceptions to the access control policy that prevent [selection: application processes, groups of application processes] from accessing [selection: all, private] data stored by other [selection: application processes, groups of application processes].AirWatch - DISA Google Android 14 BYOAD v1r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

GOOG-14-708900 - Google Android 14 must be configured to disable exceptions to the access control policy that prevent [selection: application processes, groups of application processes] from accessing [selection: all, private] data stored by other [selection: application processes, groups of application processes].MobileIron - DISA Google Android 14 BYOAD v1r1MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

MSFT-11-004500 - Microsoft Android 11 must be configured to disable exceptions to the access control policy that prevent application processes from accessing all data stored by other application processes - Copy/PasteMobileIron - DISA Microsoft Android 11 COPE v1r2MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

MSFT-11-004500 - Microsoft Android 11 must be configured to disable exceptions to the access control policy that prevent application processes from accessing all data stored by other application processes - Sharing data into the profileMobileIron - DISA Microsoft Android 11 COPE v1r2MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

MSFT-11-004500 - Microsoft Android 11 must be configured to disable exceptions to the access control policy that prevent application processes from accessing all data stored by other application processes.AirWatch - DISA Microsoft Android 11 COPE v1r2MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

MYS8-00-010600 - Execution of software modules (to include stored procedures, functions, and triggers) with elevated privileges must be restricted to necessary cases only.DISA Oracle MySQL 8.0 v2r2 DBMySQLDB

ACCESS CONTROL

OL08-00-030000 - The OL 8 audit system must be configured to audit the execution of privileged functions and prevent all software from executing at higher privilege levels than users executing the software.DISA Oracle Linux 8 STIG v2r2Unix

ACCESS CONTROL

PGS9-00-003600 - Execution of software modules (to include functions and trigger procedures) with elevated privileges must be restricted to necessary cases only.DISA STIG PostgreSQL 9.x on RHEL DB v2r5PostgreSQLDB

ACCESS CONTROL

PHTN-40-000019 The Photon operating system must be configured to audit the execution of privileged functions.DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

PPS9-00-007500 - Execution of software modules (to include stored procedures, functions, and triggers) with elevated privileges must be restricted to necessary cases only.EDB PostgreSQL Advanced Server DB Audit v2r3PostgreSQLDB

ACCESS CONTROL

PPS9-00-007510 - Execution of software modules (to include stored procedures, functions, and triggers) with elevated privileges must be restricted to necessary cases only.EDB PostgreSQL Advanced Server DB Audit v2r3PostgreSQLDB

ACCESS CONTROL

RHEL-08-030000 - The RHEL 8 audit system must be configured to audit the execution of privileged functions and prevent all software from executing at higher privilege levels than users executing the software.DISA Red Hat Enterprise Linux 8 STIG v2r1Unix

ACCESS CONTROL

RHEL-09-654010 - RHEL 9 must audit uses of the 'execve' system call - execve system call.DISA Red Hat Enterprise Linux 9 STIG v2r2Unix

ACCESS CONTROL

SQL4-00-032600 - Execution of software modules (to include stored procedures, functions, and triggers) with elevated privileges must be restricted to necessary cases only.DISA STIG SQL Server 2014 Instance DB Audit v2r4MS_SQLDB

ACCESS CONTROL

SQL6-D0-002900 - Execution of stored procedures and functions that utilize execute as must be restricted to necessary cases only.DISA STIG SQL Server 2016 Database Audit v3r1MS_SQLDB

ACCESS CONTROL

SQL6-D0-010500 - Use of credentials and proxies must be restricted to necessary cases only.DISA STIG SQL Server 2016 Instance DB Audit v3r1MS_SQLDB

ACCESS CONTROL

SQL6-D0-016400 - Execution of startup stored procedures must be restricted to necessary cases only.DISA STIG SQL Server 2016 Instance DB Audit v3r1MS_SQLDB

ACCESS CONTROL

UBTU-22-654230 - Ubuntu 22.04 LTS must prevent all software from executing at higher privilege levels than users executing the software and the audit system must be configured to audit the execution of privileged functions.DISA STIG Canonical Ubuntu 22.04 LTS v2r2Unix

ACCESS CONTROL