Detections
Analytics

800-53|CM-7(2)

Title

PREVENT PROGRAM EXECUTION

Description

The information system prevents program execution in accordance with [Selection (one or more): [Assignment: organization-defined policies regarding software program usage and restrictions]; rules authorizing the terms and conditions of software program usage].

Reference Item Details

Related: CM-8,PM-5

Category: CONFIGURATION MANAGEMENT

Parent Title: LEAST FUNCTIONALITY

Family: CONFIGURATION MANAGEMENT

Baseline Impact: MODERATE,HIGH

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1 Ensure the appropriate MongoDB software version/patches are installedMongoDBCIS MongoDB 5 L1 DB v1.2.0
1.1 Ensure the appropriate MongoDB software version/patches are installedWindowsCIS MongoDB 6 v1.2.0 L1 MongoDB
1.1 Ensure the appropriate MongoDB software version/patches are installedUnixCIS MongoDB 6 v1.2.0 L1 MongoDB
1.1 Ensure the appropriate MongoDB software version/patches are installedUnixCIS MongoDB 7 v1.2.0 L1 Unix
1.1 Ensure the appropriate MongoDB software version/patches are installedWindowsCIS MongoDB 8 v1.0.0 L1 Windows
1.1 Ensure the appropriate MongoDB software version/patches are installedWindowsCIS MongoDB 7 v1.2.0 L1 Windows
1.1 Ensure the appropriate MongoDB software version/patches are installedUnixCIS MongoDB 8 v1.0.0 L1 Unix
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - lsmodUnixCIS Debian 8 Workstation L1 v2.0.2
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - lsmodUnixCIS Debian 8 Server L1 v2.0.2
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - modprobeUnixCIS Debian 8 Server L1 v2.0.2
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - modprobeUnixCIS Debian 8 Workstation L1 v2.0.2
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Oracle Linux 8 v4.0.0 L1 Workstation
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Rocky Linux 8 v3.0.0 L1 Server
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS SUSE Linux Enterprise 15 v2.0.1 L1 Server
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS AlmaLinux OS 10 v1.0.0 L1 Server
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS AlmaLinux OS 8 v4.0.0 L1 Server
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Oracle Linux 8 v4.0.0 L1 Server
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Oracle Linux 10 v1.0.0 L1 Server
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Debian Linux 13 v1.0.0 L1 Server
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Ubuntu Linux 20.04 LTS v3.0.0 L1 Server
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Red Hat Enterprise Linux 10 v1.0.1 L1 Server
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Server
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Workstation
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Ubuntu Linux 22.04 LTS v3.0.0 L1 Server
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS SUSE Linux Enterprise 15 v2.0.1 L1 Workstation
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS AlmaLinux OS 10 v1.0.0 L1 Workstation
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS AlmaLinux OS 8 v4.0.0 L1 Workstation
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Debian Linux 13 v1.0.0 L1 Workstation
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Rocky Linux 10 v1.0.0 L1 Workstation
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Rocky Linux 8 v3.0.0 L1 Workstation
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Ubuntu Linux 20.04 LTS v3.0.0 L1 Workstation
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Ubuntu Linux 22.04 LTS v3.0.0 L1 Workstation
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Rocky Linux 10 v1.0.0 L1 Server
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Red Hat Enterprise Linux 10 v1.0.1 L1 Workstation
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Red Hat Enterprise Linux 8 v4.0.0 L1 Server
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Red Hat Enterprise Linux 8 v4.0.0 L1 Workstation
1.1.2.1.2 Ensure nodev option set on /tmp partitionUnixCIS Oracle Linux 10 v1.0.0 L1 Workstation
1.1.2.1.3 Ensure nosuid option set on /tmp partitionUnixCIS Red Hat Enterprise Linux 8 v4.0.0 L1 Workstation
1.1.2.1.3 Ensure nosuid option set on /tmp partitionUnixCIS Ubuntu Linux 22.04 LTS v3.0.0 L1 Server
1.1.2.1.3 Ensure nosuid option set on /tmp partitionUnixCIS Red Hat Enterprise Linux 10 v1.0.1 L1 Workstation
1.1.2.1.3 Ensure nosuid option set on /tmp partitionUnixCIS AlmaLinux OS 10 v1.0.0 L1 Workstation
1.1.2.1.3 Ensure nosuid option set on /tmp partitionUnixCIS AlmaLinux OS 8 v4.0.0 L1 Server
1.1.2.1.3 Ensure nosuid option set on /tmp partitionUnixCIS Ubuntu Linux 22.04 LTS v3.0.0 L1 Workstation
1.1.2.1.3 Ensure nosuid option set on /tmp partitionUnixCIS Oracle Linux 10 v1.0.0 L1 Workstation
1.1.12 Ensure noexec option set on /dev/shm partitionUnixCIS Google Container-Optimized OS v1.2.0 L1 Server
1.1.16 Ensure noexec option set on /dev/shm partitionUnixCIS Debian 8 Server L1 v2.0.2
1.1.16 Ensure noexec option set on /dev/shm partitionUnixCIS Debian 8 Workstation L1 v2.0.2
1.1.19 Ensure noexec option set on removable media partitionsUnixCIS Debian 8 Workstation L1 v2.0.2
1.1.19 Ensure noexec option set on removable media partitionsUnixCIS Debian 8 Server L1 v2.0.2