vSphere Client application files must be verified for their integrity.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-239753 | VCFL-67-000012 | SV-239753r679486_rule | Medium |
| Description |
|---|
| Verifying that vSphere Client application code is unchanged from its shipping state is essential for file validation and non-repudiation of vSphere Client. There is no reason that the MD5 hash of the rpm original files should be changed after installation, excluding configuration files. |
| STIG | Date |
|---|---|
| VMware vSphere 6.7 Virgo-Client Security Technical Implementation Guide | 2021-03-18 |
Details
| Check Text ( C-42986r679484_chk ) |
|---|
| At the command prompt, execute the following command: # rpm -V vsphere-client|grep "^..5......"|grep -E "\.war|\.jar|\.sh|\.py" If there is any output, this is a finding. |
| Fix Text (F-42945r679485_fix) |
|---|
| Reinstall the VCSA or roll back to a snapshot. Modifying the vSphere Client installation files manually is not supported by VMware. |