UCF STIG Viewer Logo

The MDM server must detect and report the version of the operating system, device drivers, and application software for managed mobile devices.


Overview

Finding ID Version Rule ID IA Controls Severity
V-36164 SRG-APP-270-MDM-162-MDM SV-47568r1_rule High
Description
Organizations are required to identify information systems containing software affected by recently announced software flaws (and potential vulnerabilities resulting from those flaws) and report this information to designated organizational officials with information security responsibilities (e.g., senior information security officers, information system security managers, information systems security officers). To support this requirement, an automated process or mechanism is required. This mechanism also ensures the network configuration is known for risk mitigation when known issues are found with certain versions of the operating system or applications.
STIG Date
Mobile Device Manager Security Requirements Guide 2013-01-24

Details

Check Text ( C-44404r1_chk )
Review the MDM server configuration to ensure the MDM server detects and reports the version of the operating system, device drivers, and application software for managed mobile devices. If this function is not configured, this is a finding.
Fix Text (F-40694r1_fix)
Configure the MDM server to detect and report the version of the operating system, device drivers, and application software for managed mobile devices.