Title

The Voice Video Endpoint must prevent installation of untrusted third-party software. (Cat II impact)

Discussion

Unauthorized third-party software is challenging the security posture of DoD. Most established vendors have developed a patch management process that prevents risk, resulting in an estimated 80 percent of threats arising from third-party software. Preventing users from installing third-party software limits organizational exposure. Additionally, preventing installation of untrusted software further reduces risk to the network. Vendors that prevent installation of all third-party software meet the intent of this requirement.

Check Content

Verify the Voice Video Endpoint prevents installation of untrusted third-party software. If the Voice Video Endpoint does not prevent installation of untrusted third-party software, this is a finding.

Fix Text

Configure the Voice Video Endpoint to prevent installation of untrusted third-party software.

Additional Identifiers

Rule ID: SV-206804r604140_rule

Vulnerability ID: V-206804

Group Title: SRG-NET-000512

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.