CSCv7|11.4

Install the Latest Stable Version of Any Security-related Updates on All Network Devices

Install the latest stable version of any security-related updates on all network devices.

Reference: CIS Critical Security Controls v7

Category: Secure Configuration for Network Devices, such as Firewalls, Routers and Switches

Name	Plugin	Audit Name
1.1 Ensure Device is running Current Junos Software	Juniper	CIS Juniper OS Benchmark v2.1.0 L1
1.3.1 Ensure 'Image Integrity' is correct	Cisco	CIS Cisco Firewall v8.x L1 v4.2.0
1.3.1 Ensure 'Image Integrity' is correct	Cisco	CIS Cisco Firewall ASA 9 L1 v4.1.0
1.3.1 Ensure 'Image Integrity' is correct	Cisco	CIS Cisco ASA 9.x Firewall L1 v1.1.0
1.3.2 Ensure 'Image Authenticity' is correct	Cisco	CIS Cisco ASA 9.x Firewall L1 v1.1.0
1.3.2 Ensure 'Image Authenticity' is correct	Cisco	CIS Cisco Firewall v8.x L1 v4.2.0
1.3.2 Ensure 'Image Authenticity' is correct	Cisco	CIS Cisco Firewall ASA 9 L1 v4.1.0
1.7 Ensure the WebSphere Liberty Installation is Validated	Unix	CIS IBM WebSphere Liberty v1.0.0 L1
1.7 Use the Latest OS Release	Unix	CIS Red Hat Enterprise Linux 5 L1 v2.2.1
2.1.6 Ensure the latest firmware is installed	FortiGate	CIS Fortigate 7.0.x v1.3.0 L2
6.5.1 (L1) Host SSH daemon, if enabled, must use FIPS 140-2/140-3 validated ciphers	Unix	CIS VMware ESXi 8.0 v1.1.0 L1 Bare Metal
6.5.2 (L1) Host SSH daemon, if enabled, must use FIPS 140-2/140-3 validated cryptographic modules	Unix	CIS VMware ESXi 8.0 v1.1.0 L1 Bare Metal
7.4 Ensure the TLSv1.0 and TLSv1.1 Protocols are Disabled	Unix	CIS Apache HTTP Server 2.4 v2.2.0 L1
7.5 Ensure Weak SSL/TLS Ciphers Are Disabled	Unix	CIS Apache HTTP Server 2.4 v2.2.0 L1
8.2 (L1) VMware Tools must have all software updates installed	VMware	CIS VMware ESXi 8.0 v1.1.0 L1