Check: EX16-ED-000700
Microsoft Exchange 2016 Edge Transport Server STIG:
EX16-ED-000700
(in versions v2 r5 through v1 r1)
Title
Exchange must have the most current, approved service pack installed. (Cat II impact)
Discussion
The organization (including any contractor to the organization) must promptly install security-relevant software updates (e.g., patches, service packs, hot fixes). Flaws discovered during security assessments, continuous monitoring, incident response activities, or information system error handling must also be addressed.
Check Content
Open the Exchange Management Shell and enter the following command: Get-ExchangeServer | fl name, AdminDisplayVersion If the value of "AdminDisplayVersion" does not return the most current, approved service pack, this is a finding.
Fix Text
Install the most current, approved service pack.
Additional Identifiers
Rule ID: SV-221263r879827_rule
Vulnerability ID: V-221263
Group Title: SRG-APP-000456
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-002605 |
The organization installs security-relevant software updates within an organization-defined time period of the release of the updates. |
Controls
Number | Title |
---|---|
SI-2 |
Flaw Remediation |