Detections
Analytics

CSCv7|11.4

Title

Install the Latest Stable Version of Any Security-related Updates on All Network Devices

Description

Install the latest stable version of any security-related updates on all network devices.

Reference Item Details

Category: Secure Configuration for Network Devices, such as Firewalls, Routers and Switches

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1 Ensure Device is running Current Junos SoftwareJuniperCIS Juniper OS Benchmark v2.1.0 L1
1.3.1 Ensure 'Image Integrity' is correctCiscoCIS Cisco Firewall v8.x L1 v4.2.0
1.3.1 Ensure 'Image Integrity' is correctCiscoCIS Cisco ASA 9.x Firewall L1 v1.1.0
1.3.1 Ensure 'Image Integrity' is correctCiscoCIS Cisco Firewall ASA 9 L1 v4.1.0
1.3.2 Ensure 'Image Authenticity' is correctCiscoCIS Cisco Firewall v8.x L1 v4.2.0
1.3.2 Ensure 'Image Authenticity' is correctCiscoCIS Cisco ASA 9.x Firewall L1 v1.1.0
1.3.2 Ensure 'Image Authenticity' is correctCiscoCIS Cisco Firewall ASA 9 L1 v4.1.0
1.7 Ensure the WebSphere Liberty Installation is ValidatedUnixCIS IBM WebSphere Liberty v1.0.0 L1
1.7 Use the Latest OS ReleaseUnixCIS Red Hat Enterprise Linux 5 L1 v2.2.1
2.1.6 Ensure the latest firmware is installedFortiGateCIS FortiGate 7.4.x v1.0.1 L2
2.1.6 Ensure the latest firmware is installedFortiGateCIS Fortigate 7.0.x v1.4.0 L2
4.2.14 Ensure that the --seccomp-default parameter is set to trueUnixCIS Kubernetes v1.12.0 L1 Worker Node
6.5.1 (L1) Host SSH daemon, if enabled, must use FIPS 140-2/140-3 validated ciphersUnixCIS VMware ESXi 8.0 v1.2.0 L1 Unix
6.5.2 (L1) Host SSH daemon, if enabled, must use FIPS 140-2/140-3 validated cryptographic modulesUnixCIS VMware ESXi 8.0 v1.2.0 L1 Unix
7.4 Ensure the TLSv1.0 and TLSv1.1 Protocols are DisabledUnixCIS Apache HTTP Server 2.4 v2.3.0 L1
7.5 Ensure Weak SSL/TLS Ciphers Are DisabledUnixCIS Apache HTTP Server 2.4 v2.3.0 L1
8.2 (L1) VMware Tools must have all software updates installedVMwareCIS VMware ESXi 8.0 v1.2.0 L1 VMware