The network element must be configured to implement automated patch management tools to facilitate flaw remediation to network components.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-34756	SRG-NET-000243-IDPS-NA	SV-45666r1_rule		Low

Description
It is imperative that the organization promptly installs security relevant software updates from an authorized patch management server to mitigate the risk of new vulnerabilities. Flaws discovered during security assessments, continuous monitoring, incident response activities, or information system error handling, are also addressed expeditiously. Software obtained from unauthorized sources may contain malicious code and may put the enclave at risk. This requirement applies to flaw remediation systems. Flaw remediation is not a function of the IDPS.

Description

It is imperative that the organization promptly installs security relevant software updates from an authorized patch management server to mitigate the risk of new vulnerabilities. Flaws discovered during security assessments, continuous monitoring, incident response activities, or information system error handling, are also addressed expeditiously. Software obtained from unauthorized sources may contain malicious code and may put the enclave at risk. This requirement applies to flaw remediation systems. Flaw remediation is not a function of the IDPS.

STIG	Date
Intrusion Detection and Prevention Systems (IDPS) Security Requirements Guide	2012-11-19

Details

Check Text ( C-43032r1_chk )
This requirement is NA for IDPS. No fix required.

Fix Text (F-39064r1_fix)
This requirement is NA for IDPS. No fix required.