CAT|II

Title

DISA Severity Level 2

Description

Any vulnerability, the exploitation of which has a potential to result in loss of Confidentiality, Availability, or Integrity.

Reference Item Details

Reference: CAT - DISA Severity Level

Category: Severity Level

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
1.001 - Physical security of the Automated Information System (AIS) does not meet DISA requirements.	Windows	DISA Windows Vista STIG v6r41
1.1 APPL-14-000001	Unix	CIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT II
1.1 RHEL-09-171011	Unix	CIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.1 UBTU-24-90890	Unix	CIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.1 WN22-00-000010	Windows	CIS Microsoft Windows Server 2022 STIG v3.0.0 DC CAT II
1.1 WN22-00-000010	Windows	CIS Microsoft Windows Server 2022 STIG v3.0.0 MS CAT II
1.1.1.1 Ensure cramfs kernel module is not available	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Server
1.1.1.1 Ensure cramfs kernel module is not available	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Workstation
1.1.1.1 Ensure cramfs kernel module is not available	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.1.9 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Server
1.1.1.9 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.1.9 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L2 Workstation
1.1.1.12 Ensure a camera is not installed	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.2.1.1 Ensure /tmp is a separate partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Server
1.1.2.1.1 Ensure /tmp is a separate partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Workstation
1.1.2.1.1 Ensure /tmp is a separate partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.2.1.2 Ensure nodev option set on /tmp partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Server
1.1.2.1.2 Ensure nodev option set on /tmp partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Workstation
1.1.2.1.2 Ensure nodev option set on /tmp partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.2.1.3 Ensure nosuid option set on /tmp partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.2.1.3 Ensure nosuid option set on /tmp partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Workstation
1.1.2.1.3 Ensure nosuid option set on /tmp partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Server
1.1.2.1.4 Ensure noexec option set on /tmp partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.2.1.4 Ensure noexec option set on /tmp partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Server
1.1.2.1.4 Ensure noexec option set on /tmp partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Workstation
1.1.2.2.2 Ensure nodev option set on /dev/shm partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Server
1.1.2.2.2 Ensure nodev option set on /dev/shm partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Workstation
1.1.2.2.2 Ensure nodev option set on /dev/shm partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.2.2.3 Ensure nosuid option set on /dev/shm partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Server
1.1.2.2.3 Ensure nosuid option set on /dev/shm partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Workstation
1.1.2.2.3 Ensure nosuid option set on /dev/shm partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.2.2.4 Ensure noexec option set on /dev/shm partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Workstation
1.1.2.2.4 Ensure noexec option set on /dev/shm partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.2.2.4 Ensure noexec option set on /dev/shm partition	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Server
1.1.2.10.1 Ensure file systems that are being NFS-imported are mounted with the "nodev" option	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.2.10.2 Ensure file systems being imported via NFS are mounted with the "nosuid" option	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.2.10.3 Ensure file systems being imported via NFS are mounted with the "noexec" option	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.2.11.1 Ensure nodev option set on removable media partitions	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Workstation
1.1.2.11.1 Ensure nodev option set on removable media partitions	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.2.11.1 Ensure nodev option set on removable media partitions	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Server
1.1.2.11.2 Ensure nosuid option set on removable media partitions	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Server
1.1.2.11.2 Ensure nosuid option set on removable media partitions	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Workstation
1.1.2.11.2 Ensure nosuid option set on removable media partitions	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.2.11.3 Ensure noexec option set on removable media partitions	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Server
1.1.2.11.3 Ensure noexec option set on removable media partitions	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Workstation
1.1.2.11.3 Ensure noexec option set on removable media partitions	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.2.12 Ensure all non-root local partitions are mounted with the "nodev" option	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.19 Ensure nosuid is set on users' home directories.	Unix	CIS Amazon Linux 2 STIG v2.0.0 STIG
1.007 - Members of the Backup Operators group must have separate accounts for backup duties and normal operational tasks.	Windows	DISA Windows Vista STIG v6r41
1.008 - Shared user accounts are permitted on the system.	Windows	DISA Windows Vista STIG v6r41

Detections

Analytics

CAT|II

Title

Description

Reference Item Details

Audit Items