Detections
Analytics

CSCv7|11.4

Title

Install the Latest Stable Version of Any Security-related Updates on All Network Devices

Description

Install the latest stable version of any security-related updates on all network devices.

Reference Item Details

Category: Secure Configuration for Network Devices, such as Firewalls, Routers and Switches

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1 Ensure Device is running Current Junos SoftwareJuniperCIS Juniper OS Benchmark v2.1.0 L1
1.3.1 Ensure 'Image Integrity' is correctCiscoCIS Cisco ASA 9.x Firewall L1 v1.0.0
1.3.1 Ensure 'Image Integrity' is correctCiscoCIS Cisco Firewall v8.x L1 v4.2.0
1.3.1 Ensure 'Image Integrity' is correctCiscoCIS Cisco Firewall ASA 9 L1 v4.1.0
1.3.2 Ensure 'Image Authenticity' is correctCiscoCIS Cisco Firewall ASA 9 L1 v4.1.0
1.3.2 Ensure 'Image Authenticity' is correctCiscoCIS Cisco Firewall v8.x L1 v4.2.0
1.3.2 Ensure 'Image Authenticity' is correctCiscoCIS Cisco ASA 9.x Firewall L1 v1.0.0
1.7 Use the Latest OS ReleaseUnixCIS Red Hat Enterprise Linux 5 L1 v2.2.1
2.1.6 Ensure the latest firmware is installedFortiGateCIS Fortigate 7.0.x Level 2 v1.2.0
6.5.1 (L1) Host SSH daemon, if enabled, must use FIPS 140-2/140-3 validated ciphersUnixCIS VMware ESXi 8.0 v1.1.0 L1 Bare Metal
6.5.2 (L1) Host SSH daemon, if enabled, must use FIPS 140-2/140-3 validated cryptographic modulesUnixCIS VMware ESXi 8.0 v1.1.0 L1 Bare Metal
7.4 Ensure the TLSv1.0 and TLSv1.1 Protocols are DisabledUnixCIS Apache HTTP Server 2.4 L1 v2.1.0
7.4 Ensure the TLSv1.0 and TLSv1.1 Protocols are DisabledUnixCIS Apache HTTP Server 2.4 L1 v2.1.0 Middleware
7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'Global SSLCipherSuite'UnixCIS Apache HTTP Server 2.4 L1 v2.1.0 Middleware
7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'Global SSLCipherSuite'UnixCIS Apache HTTP Server 2.4 L1 v2.1.0
7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'Global SSLHonorCipherOrder = On'UnixCIS Apache HTTP Server 2.4 L1 v2.1.0 Middleware
7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'Global SSLHonorCipherOrder = On'UnixCIS Apache HTTP Server 2.4 L1 v2.1.0
7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'VirtualHost SSLCipherSuite'UnixCIS Apache HTTP Server 2.4 L1 v2.1.0
7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'VirtualHost SSLCipherSuite'UnixCIS Apache HTTP Server 2.4 L1 v2.1.0 Middleware
7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'VirtualHost SSLHonorCipherOrder = On'UnixCIS Apache HTTP Server 2.4 L1 v2.1.0 Middleware
7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'VirtualHost SSLHonorCipherOrder = On'UnixCIS Apache HTTP Server 2.4 L1 v2.1.0
8.2 (L1) VMware Tools must have all software updates installedVMwareCIS VMware ESXi 8.0 v1.1.0 L1