Trellix ENS 10.x Local Client STIG Version Comparison

There are 1 differences between versions v1 r6 (Jan. 24, 2024) (the "left" version) and v2 r2 (Oct. 24, 2024) (the "right" version).

Check ENS-CO-000115 was changed between these two versions. Green, underlined text was added, red, struck-out text was removed.

The regular view of the left check and right check may be easier to read.

Title

(U) ENS must have the latest version from the DISA Patch Repository.

Check Content

(U) In the system tray, right-click the McAfee Trellix icon and select "McAfee "Trellix Endpoint Security". Click the drop-down in the upper-right upper right corner of the "McAfee "Trellix Endpoint Security" window and select "About". Verify the ENS version is a current version listed on the DISA Patch Repository. If the version is not the most current, this is a finding.

Discussion

(U) Systems not running the latest tested and approved versions of software are vulnerable to network attacks. Running the most current, approved version of system and device software helps the site maintain a stable base of security fixes and patches, as well as enhancements to IP security. Viruses, denial-of-service attacks, system weaknesses, back doors, and other potentially harmful situations could render a system vulnerable, allowing unauthorized access to DOD assets.

Fix

(U) Update to the latest version of ENS.