Check: VCPF-67-000009
VMware vSphere 6.7 Perfcharts Tomcat STIG:
VCPF-67-000009
(in versions v1 r3 through v1 r1)
Title
Performance Charts must only run one web app. (Cat II impact)
Discussion
VMware ships Performance Charts on the VCSA with one web app. Any other path is potentially malicious and must be removed.
Check Content
At the command prompt, execute the following command: # ls -A /usr/lib/vmware-perfcharts/tc-instance/webapps Expected result: statsreport If the output does not match the expected result, this is a finding.
Fix Text
For each unexpected directory returned in the check, run the following command: # rm /usr/lib/vmware-sso/vmware-sts/webapps/<NAME> Restart the service with the following command: # service-control --restart vmware-perfcharts
Additional Identifiers
Rule ID: SV-239410r879584_rule
Vulnerability ID: V-239410
Group Title: SRG-APP-000131-WSR-000073
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001749 |
The information system prevents the installation of organization-defined software components without verification the software component has been digitally signed using a certificate that is recognized and approved by the organization. |
Controls
Number | Title |
---|---|
CM-5 (3) |
Signed Components |