Detections
Analytics

800-53|CM-7(2)

Title

PREVENT PROGRAM EXECUTION

Description

The information system prevents program execution in accordance with [Selection (one or more): [Assignment: organization-defined policies regarding software program usage and restrictions]; rules authorizing the terms and conditions of software program usage].

Reference Item Details

Related: CM-8,PM-5

Category: CONFIGURATION MANAGEMENT

Parent Title: LEAST FUNCTIONALITY

Family: CONFIGURATION MANAGEMENT

Baseline Impact: MODERATE,HIGH

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1 Ensure the appropriate MongoDB software version/patches are installedMongoDBCIS MongoDB 5 L1 DB v1.2.0
1.1 Ensure the appropriate MongoDB software version/patches are installedWindowsCIS MongoDB 6 v1.2.0 L1 MongoDB
1.1 Ensure the appropriate MongoDB software version/patches are installedUnixCIS MongoDB 6 v1.2.0 L1 MongoDB
1.1 Ensure the appropriate MongoDB software version/patches are installedUnixCIS MongoDB 7 v1.2.0 L1 Unix
1.1 Ensure the appropriate MongoDB software version/patches are installedWindowsCIS MongoDB 8 v1.0.0 L1 Windows
1.1 Ensure the appropriate MongoDB software version/patches are installedWindowsCIS MongoDB 7 v1.2.0 L1 Windows
1.1 Ensure the appropriate MongoDB software version/patches are installedUnixCIS MongoDB 8 v1.0.0 L1 Unix
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - lsmodUnixCIS Debian 8 Workstation L1 v2.0.2
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - lsmodUnixCIS Debian 8 Server L1 v2.0.2
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - modprobeUnixCIS Debian 8 Server L1 v2.0.2
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - modprobeUnixCIS Debian 8 Workstation L1 v2.0.2
1.1.2.11.3 Ensure noexec option set on removable media partitionsUnixCIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Server
1.1.2.11.3 Ensure noexec option set on removable media partitionsUnixCIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.2.11.3 Ensure noexec option set on removable media partitionsUnixCIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Workstation
1.1.5 Ensure noexec option set on /tmp partitionUnixCIS Google Container-Optimized OS v1.2.0 L1 Server
1.1.7 Ensure noexec option set on /dev/shm partition - fstabUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.1.7 Ensure noexec option set on /dev/shm partition - mountUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.1.7 Ensure noexec option set on /var partitionUnixCIS Google Container-Optimized OS v1.2.0 L2 Server
1.1.8 Ensure nodev option set on /dev/shm partition - fstabUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.1.8 Ensure nodev option set on /dev/shm partition - mountUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.1.9 Ensure noexec option set on /var/tmp partitionUnixCIS Debian 8 Server L1 v2.0.2
1.1.9 Ensure noexec option set on /var/tmp partitionUnixCIS Debian 8 Workstation L1 v2.0.2
1.1.9 Ensure nosuid option set on /dev/shm partition - fstabUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.1.9 Ensure nosuid option set on /dev/shm partition - mountUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.1.12 Ensure noexec option set on /dev/shm partitionUnixCIS Google Container-Optimized OS v1.2.0 L1 Server
1.1.16 Ensure noexec option set on /dev/shm partitionUnixCIS Debian 8 Server L1 v2.0.2
1.1.16 Ensure noexec option set on /dev/shm partitionUnixCIS Debian 8 Workstation L1 v2.0.2
1.1.19 Ensure noexec option set on removable media partitionsUnixCIS Debian 8 Workstation L1 v2.0.2
1.1.19 Ensure noexec option set on removable media partitionsUnixCIS Debian 8 Server L1 v2.0.2
1.2.3.1.7 Configure 'Turn off Event Viewer 'Events.asp' links'WindowsCIS Windows 8 L1 v1.0.0
1.2.3.2.2 Configure 'Do not process the run once list'WindowsCIS Windows 8 L1 v1.0.0
1.2.3.2.3 Configure 'Do not process the legacy run list'WindowsCIS Windows 8 L1 v1.0.0
1.2.4.9 Set 'Turn off Data Execution Prevention for Explorer' to 'Disabled'WindowsCIS Windows 8 L1 v1.0.0
1.16 UBTU-24-100500UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.17 UBTU-24-100510UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.31 Set 'Turn off Data Execution Prevention' to 'Disabled'WindowsCIS MS Office Outlook 2010 v1.0.0
1.100 RHEL-09-231165UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.101 RHEL-09-231170UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.102 RHEL-09-231175UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.103 RHEL-09-231180UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.104 RHEL-09-231185UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.124 WN19-CC-000310WindowsCIS Microsoft Windows Server 2019 STIG v4.0.0 DC CAT II
1.124 WN19-CC-000310WindowsCIS Microsoft Windows Server 2019 STIG v4.0.0 MS CAT II
1.241 RHEL-09-271030UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.307 OL08-00-040120UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.308 OL08-00-040121UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.309 OL08-00-040122UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.310 OL08-00-040123UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.310 RHEL-09-433010UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.311 OL08-00-040124UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II