| V-54383 | High | The Java Runtime Environment (JRE) must not be installed on an unsupported operating system. | Security updates are the standard method for addressing discovered vulnerabilities. The operating system platform the JRE is installed on must be supported for security updates or the OS becomes... |
| V-32829 | Medium | The dialog enabling users to grant permissions to execute signed content from an un-trusted authority must be locked. | Java applets exist in both signed and unsigned forms. Although signed applets allow for authentication of the author in order to establish trust, even signed applets can potentially contain... |
| V-32828 | Medium | The dialog enabling users to grant permissions to execute signed content from an un-trusted authority must be disabled. | Java applets exist in both signed and unsigned forms. Although signed applets allow for authentication of the author in order to establish trust, even signed applets can potentially contain... |
| V-32902 | Medium | A properties file must be present to hold all the keys that establish properties within the Java control panel. | The deployment.properties file is used for specifying keys for the Java Runtime Environment. Each option in the Java control panel is represented by property keys. These keys adjust the options... |
| V-32833 | Medium | The option to enable online certificate validation must be locked.
| Online certificate validation provides a real-time option to validate a certificate. When enabled, if a certificate is presented, the status of the certificate is requested. The status is sent... |
| V-32830 | Medium | The dialog to enable users to check publisher certificates for revocation must be enabled.
| A certificate revocation list is a directory which contains a list of certificates that have been revoked for various reasons. Certificates may be revoked due to improper issuance, compromise of... |
| V-32831 | Medium | The option to enable users to check publisher certificates for revocation must be locked.
| Certificates may be revoked due to improper issuance, compromise of the certificate, and failure to adhere to policy. Therefore, any certificate found revoked on a CRL or via Online Certificate... |
| V-32832 | Medium | The option to enable online certificate validation must be enabled.
| Online certificate validation provides a real-time option to validate a certificate. When enabled, if a certificate is presented, the status of the certificate is requested. The status is sent... |
| V-32842 | Medium | The configuration file must contain proper keys and values to deploy settings correctly. | This configuration file must hold values of the location of the deployment.properties file, as well as the enforcement of these properties. Without a proper path for the properties file,... |
| V-39239 | Medium | The version of the JRE running on the system must be the most current available. | The JRE is being continually updated by the vendor in order to address identified security vulnerabilities. Running an older version of the JRE can introduce security vulnerabilities to the system. |
| V-32901 | Medium | A configuration file must be present to deploy properties for JRE. | The deployment.config file is used for specifying the location and execution of system-level properties for the Java Runtime Environment. By default no deployment.config file exists; thus, no... |
