Performance Charts must only run one web app.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-239410 | VCPF-67-000009 | SV-239410r674953_rule | Medium |
| Description |
|---|
| VMware ships Performance Charts on the VCSA with one web app. Any other path is potentially malicious and must be removed. |
| STIG | Date |
|---|---|
| VMware vSphere 6.7 Perfcharts Tomcat Security Technical Implementation Guide | 2022-01-03 |
Details
| Check Text ( C-42643r674951_chk ) |
|---|
| At the command prompt, execute the following command: # ls -A /usr/lib/vmware-perfcharts/tc-instance/webapps Expected result: statsreport If the output does not match the expected result, this is a finding. |
| Fix Text (F-42602r674952_fix) |
|---|
| For each unexpected directory returned in the check, run the following command: # rm /usr/lib/vmware-sso/vmware-sts/webapps/ Restart the service with the following command: # service-control --restart vmware-perfcharts |