CCI|CCI-002233

Title

The information system prevents organization-defined software from executing at higher privilege levels than users executing the software.

Reference Item Details

Category: 2013

Audit Items

View all Reference Audit Items

NamePluginAudit Name
AIX7-00-001138 - NFS file systems on AIX must be mounted with the nosuid option unless the NFS file systems contain approved setuid or setgid programs.UnixDISA STIG AIX 7.x v2r6
Big Sur - Prevent Software From Executing at Higher Privilege Levels than Users Executing The SoftwareUnixNIST macOS Big Sur v1.4.0 - All Profiles
Catalina - Prevent Software From Executing at Higher Privilege Levels than Users Executing The SoftwareUnixNIST macOS Catalina v1.5.0 - All Profiles
CNTR-K8-002000 - The Kubernetes API server must have the ValidatingAdmissionWebhook enabled.UnixDISA STIG Kubernetes v1r6
CNTR-K8-002010 - Kubernetes must have a pod security policy set.UnixDISA STIG Kubernetes v1r6
DKER-EE-001170 - A policy set using the built-in role-based access control (RBAC) capabilities in the Universal Control Plane (UCP) component of Docker Enterprise must be configured.UnixDISA STIG Docker Enterprise 2.x Linux/Unix UCP v2r1
DKER-EE-001180 - A policy set using the built-in role-based access control (RBAC) capabilities in the Docker Trusted Registry (DTR) component of Docker Enterprise must be set - repositoryAccessUnixDISA STIG Docker Enterprise 2.x Linux/Unix DTR v2r1
DKER-EE-001180 - A policy set using the built-in role-based access control (RBAC) capabilities in the Docker Trusted Registry (DTR) component of Docker Enterprise must be set - team member accessUnixDISA STIG Docker Enterprise 2.x Linux/Unix UCP v2r1
DKER-EE-003200 - Docker Enterprise images must be built with the USER instruction to prevent containers from running as root.UnixDISA STIG Docker Enterprise 2.x Linux/Unix v2r1
GEN000520 - The root user must not own the logon session for an application requiring a continuous display.UnixDISA STIG Solaris 10 SPARC v2r2
GEN000520 - The root user must not own the logon session for an application requiring a continuous display.UnixDISA STIG Solaris 10 X86 v2r2
GEN000920 - The root account's home directory (other than /) must have mode 0700.UnixDISA STIG Solaris 10 X86 v2r2
GEN000920 - The root account's home directory (other than /) must have mode 0700.UnixDISA STIG Solaris 10 SPARC v2r2
GOOG-12-008900 - Google Android 12 must be configured to disable exceptions to the access control policy that prevent [selection: application processes, groups of application processes] from accessing [selection: all, private] data stored by other [selection: application processes, groups of application processes].MDMAirWatch - DISA Google Android 12 COPE v1r1
GOOG-12-008900 - Google Android 12 must be configured to disable exceptions to the access control policy that prevent [selection: application processes, groups of application processes] from accessing [selection: all, private] data stored by other [selection: application processes, groups of application processes].MDMMobileIron - DISA Google Android 12 COPE v1r1
Monterey - Prevent Software From Executing at Higher Privilege Levels than Users Executing The SoftwareUnixNIST macOS Monterey v1.0.0 - All Profiles
OL08-00-030000 - The OL 8 audit system must be configured to audit the execution of privileged functions and prevent all software from executing at higher privilege levels than users executing the software - b32 gidUnixDISA Oracle Linux 8 STIG v1r2
OL08-00-030000 - The OL 8 audit system must be configured to audit the execution of privileged functions and prevent all software from executing at higher privilege levels than users executing the software - b32 uidUnixDISA Oracle Linux 8 STIG v1r2
OL08-00-030000 - The OL 8 audit system must be configured to audit the execution of privileged functions and prevent all software from executing at higher privilege levels than users executing the software - b64 gidUnixDISA Oracle Linux 8 STIG v1r2
OL08-00-030000 - The OL 8 audit system must be configured to audit the execution of privileged functions and prevent all software from executing at higher privilege levels than users executing the software - b64 uidUnixDISA Oracle Linux 8 STIG v1r2
RHEL-08-030000 - The RHEL 8 audit system must be configured to audit the execution of privileged functions and prevent all software from executing at higher privilege levels than users executing the software - b32 gidUnixDISA Red Hat Enterprise Linux 8 STIG v1r7
RHEL-08-030000 - The RHEL 8 audit system must be configured to audit the execution of privileged functions and prevent all software from executing at higher privilege levels than users executing the software - b32 uidUnixDISA Red Hat Enterprise Linux 8 STIG v1r7
RHEL-08-030000 - The RHEL 8 audit system must be configured to audit the execution of privileged functions and prevent all software from executing at higher privilege levels than users executing the software - b64 gidUnixDISA Red Hat Enterprise Linux 8 STIG v1r7
RHEL-08-030000 - The RHEL 8 audit system must be configured to audit the execution of privileged functions and prevent all software from executing at higher privilege levels than users executing the software - b64 uidUnixDISA Red Hat Enterprise Linux 8 STIG v1r7
SLES-12-010600 - The SUSE operating system Apparmor tool must be configured to control whitelisted applications and user home directory access control - apparmor activeUnixDISA SLES 12 STIG v2r7
SLES-12-010600 - The SUSE operating system Apparmor tool must be configured to control whitelisted applications and user home directory access control - pam_apparmorUnixDISA SLES 12 STIG v2r7
SLES-15-010390 - SUSE operating system AppArmor tool must be configured to control whitelisted applications and user home directory access control - activeUnixDISA SLES 15 STIG v1r6
SLES-15-010390 - SUSE operating system AppArmor tool must be configured to control whitelisted applications and user home directory access control - installedUnixDISA SLES 15 STIG v1r6
UBTU-16-020350 - The audit system must be configured to audit the execution of privileged functions and prevent all software from executing at higher privilege levels than users executing the software - egid b32UnixDISA STIG Ubuntu 16.04 LTS v2r3
UBTU-16-020350 - The audit system must be configured to audit the execution of privileged functions and prevent all software from executing at higher privilege levels than users executing the software - egid b64UnixDISA STIG Ubuntu 16.04 LTS v2r3
UBTU-16-020350 - The audit system must be configured to audit the execution of privileged functions and prevent all software from executing at higher privilege levels than users executing the software - euid b32UnixDISA STIG Ubuntu 16.04 LTS v2r3
UBTU-16-020350 - The audit system must be configured to audit the execution of privileged functions and prevent all software from executing at higher privilege levels than users executing the software - euid b64UnixDISA STIG Ubuntu 16.04 LTS v2r3
UBTU-18-010358 - The Ubuntu operating system must prevent all software from executing at higher privilege levels than users executing the software and the audit system must be configured to audit the execution of privileged functions - egid b32UnixDISA STIG Ubuntu 18.04 LTS v2r8
UBTU-18-010358 - The Ubuntu operating system must prevent all software from executing at higher privilege levels than users executing the software and the audit system must be configured to audit the execution of privileged functions - egid b32 auditctlUnixDISA STIG Ubuntu 18.04 LTS v2r8
UBTU-18-010358 - The Ubuntu operating system must prevent all software from executing at higher privilege levels than users executing the software and the audit system must be configured to audit the execution of privileged functions - egid b64UnixDISA STIG Ubuntu 18.04 LTS v2r8
UBTU-18-010358 - The Ubuntu operating system must prevent all software from executing at higher privilege levels than users executing the software and the audit system must be configured to audit the execution of privileged functions - egid b64 auditctlUnixDISA STIG Ubuntu 18.04 LTS v2r8
UBTU-18-010358 - The Ubuntu operating system must prevent all software from executing at higher privilege levels than users executing the software and the audit system must be configured to audit the execution of privileged functions - euid b32UnixDISA STIG Ubuntu 18.04 LTS v2r8
UBTU-18-010358 - The Ubuntu operating system must prevent all software from executing at higher privilege levels than users executing the software and the audit system must be configured to audit the execution of privileged functions - euid b32 auditctlUnixDISA STIG Ubuntu 18.04 LTS v2r8
UBTU-18-010358 - The Ubuntu operating system must prevent all software from executing at higher privilege levels than users executing the software and the audit system must be configured to audit the execution of privileged functions - euid b64UnixDISA STIG Ubuntu 18.04 LTS v2r8
UBTU-18-010358 - The Ubuntu operating system must prevent all software from executing at higher privilege levels than users executing the software and the audit system must be configured to audit the execution of privileged functions - euid b64 auditctlUnixDISA STIG Ubuntu 18.04 LTS v2r8
UBTU-20-010211 - The Ubuntu operating system must prevent all software from executing at higher privilege levels than users executing the software and the audit system must be configured to audit the execution of privileged functions - b32 gidUnixDISA STIG Ubuntu 20.04 LTS v1r5
UBTU-20-010211 - The Ubuntu operating system must prevent all software from executing at higher privilege levels than users executing the software and the audit system must be configured to audit the execution of privileged functions - b32 uidUnixDISA STIG Ubuntu 20.04 LTS v1r5
UBTU-20-010211 - The Ubuntu operating system must prevent all software from executing at higher privilege levels than users executing the software and the audit system must be configured to audit the execution of privileged functions - b64 gidUnixDISA STIG Ubuntu 20.04 LTS v1r5
UBTU-20-010211 - The Ubuntu operating system must prevent all software from executing at higher privilege levels than users executing the software and the audit system must be configured to audit the execution of privileged functions - b64 uidUnixDISA STIG Ubuntu 20.04 LTS v1r5