Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-66795 | SRG-NET-000512-VVEP-00057 | SV-81285r1_rule | Medium |
Description |
---|
Unauthorized third-party software is challenging the security posture of DoD. Most established vendors have developed patch management process that prevents risk, resulting in an estimated 80 percent of threats arise from third-party software. Preventing users from installing third-party software limits organizational exposure. Additionally, preventing installation of untrusted software further reduces risk to the network. |
STIG | Date |
---|---|
Voice Video Endpoint Security Requirements Guide | 2019-03-15 |
Check Text ( C-67445r1_chk ) |
---|
Verify the Voice Video Endpoint prevents the user from installing third-party software. If the Voice Video Endpoint does not prevent the user from installing third-party software, this is a finding. |
Fix Text (F-72895r1_fix) |
---|
Configure the Voice Video Endpoint to prevent the user from installing third-party software. |