Title

Forescout must be running an operating system release that is currently supported by the vendor. (Cat II impact)

Discussion

Network devices running an unsupported operating system lack current security fixes required to mitigate the risks associated with recent vulnerabilities. In October 2021, there is plan to make Version 7 end-of-life. This will be stated on the product lifecycle page of the Forescout website. All versions of V8 and above are authorized for use in DOD. Version 8 or later is mandatory after October 2021.

Check Content

Check that Forescout is still running supported operating system versions and that all vulnerability patches and updates have been applied. Verify the installed version is supported by Forescout by checking the Forescout support website lifecycle page. Currently, Version 8 or later is mandatory after October 2021. If Forescout is running an operating system release that is not supported by the vendor, this is a finding. Check from the Console: 1. Log into the Forescout management console. 2. Select Help > About Forescout to show the current version. Check from the CLI: 1. Log into the Forescout CLI. 2. Type "fstool version" to show the current running version.

Fix Text

Check that Forescout is still running supported operating system versions and that all vulnerability patches and updates have been applied. Establish and document a procedure that requires the auditing of OS versions and any patches and updates have been applied in accordance with Forescout support website lifecycle page.

Additional Identifiers

Rule ID: SV-230953r1113791_rule

Vulnerability ID: V-230953

Group Title: SRG-APP-000516-NDM-000351

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.