NIST 800-53 Rev 5
424 controls available
SI-2(2)moderatehigh
Automated Flaw Remediation Status
System and Information Integrity
Control Statement
Determine if system components have applicable security-relevant software and firmware updates installed using {{ insert: param, si-02.02_odp.01 }} {{ insert: param, si-02.02_odp.02 }}.
Discussion
Automated mechanisms can track and determine the status of known flaws for system components.
- Framework
- NIST SP 800-53 Rev 5
- Family
- System and Information Integrity
- Baselines
- moderate, high
Related Frameworks
8 paths across 1 framework
Related Frameworks
CCI8 mappings
CCI-001233
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001234
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-004955
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-004956
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-004957
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-004958
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-004959
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-004960
1.00
- DISA · 2025-01-23 · disa_cci_list · equivalent
Related STIGs
144 STIGs reach this control through 36 CCIs. Expand a row to see the responsible NICE and O*NET roles.
Operating System — Desktop
3 STIGs
Operating System — Desktop
3 STIGsApple macOS 15 (Sequoia) Security Technical Implementation Guide
V1R72026-02-061 of 160 findings match
M1
Apple macOS 15 (Sequoia) Security Technical Implementation Guide
12025-05-051 of 161 findings match
M1
Apple macOS 26 (Tahoe) Security Technical Implementation Guide
V1R22026-02-111 of 160 findings match
H1
Operating System — Server
34 STIGs
Operating System — Server
34 STIGsSUSE Linux Enterprise Server 15 Security Technical Implementation Guide
V2R72026-02-195 of 214 findings match
H1M4
SUSE Linux Enterprise Server 15 Security Technical Implementation Guide
22025-05-145 of 216 findings match
H1M4
SUSE Linux Enterprise Server 12 Security Technical Implementation Guide
32025-05-143 of 211 findings match
H1M2
Amazon Linux 2023 Security Technical Implementation Guide
V1R32026-02-272 of 187 findings match
H1M1
Anduril NixOS Security Technical Implementation Guide
12024-10-252 of 104 findings match
M2
Canonical Ubuntu 24.04 LTS Security Technical Implementation Guide
12025-05-162 of 194 findings match
M2
Cloud Linux AlmaLinux OS 9 Security Technical Implementation Guide
V1R62026-02-272 of 439 findings match
H1M1
CloudLinux AlmaLinux OS 9 Security Technical Implementation Guide
12025-05-222 of 445 findings match
H1M1
Show 26 more STIGs in this category →Hide additional STIGs
General Purpose Operating System Security Requirements Guide
32024-12-042 of 198 findings match
M2
General Purpose Operating System Security Requirements Guide
V3R32025-09-222 of 203 findings match
H1M1
Oracle Linux 9 Security Technical Implementation Guide
12025-05-082 of 456 findings match
H1L1
Oracle Linux 9 Security Technical Implementation Guide
V1R52026-02-172 of 448 findings match
H1L1
SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide
12025-05-082 of 210 findings match
M2
Anduril NixOS Security Technical Implementation Guide
V1R22025-08-191 of 103 findings match
M1
Canonical Ubuntu 20.04 LTS Security Technical Implementation Guide
22025-05-161 of 172 findings match
M1
Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide
V2R82026-02-061 of 188 findings match
M1
Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide
22025-05-161 of 187 findings match
M1
Canonical Ubuntu 24.04 LTS Security Technical Implementation Guide
V1R52026-02-061 of 194 findings match
M1
Cloud Computing Mission Owner Operating System Security Requirements Guide
V1R32025-08-131 of 17 findings match
M1
Cloud Computing Mission Owner Operating System Security Requirements Guide
12024-12-191 of 17 findings match
M1
IBM AIX 7.x Security Technical Implementation Guide
V3R22026-02-061 of 283 findings match
M1
IBM AIX 7.x Security Technical Implementation Guide
32024-08-161 of 283 findings match
M1
Microsoft Windows Server 2025 Security Technical Implementation Guide
V1R12026-02-201 of 284 findings match
M1
Oracle Linux 7 Security Technical Implementation Guide
32025-05-081 of 243 findings match
L1
Oracle Linux 8 Security Technical Implementation Guide
22025-05-131 of 374 findings match
L1
Oracle Linux 8 Security Technical Implementation Guide
V2R82026-02-131 of 375 findings match
L1
Red Hat Enterprise Linux 10 Security Technical Implementation Guide
V1R12026-03-111 of 434 findings match
M1
Red Hat Enterprise Linux 8 Security Technical Implementation Guide
V2R72026-02-051 of 366 findings match
L1
Red Hat Enterprise Linux 8 Security Technical Implementation Guide
22025-05-141 of 369 findings match
L1
Red Hat Enterprise Linux 9 Security Technical Implementation Guide
22025-05-141 of 450 findings match
L1
Red Hat Enterprise Linux 9 Security Technical Implementation Guide
V2R82026-02-051 of 446 findings match
L1
SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide
V1R42026-02-101 of 208 findings match
M1
Tri-Lab Operating System Stack (TOSS) 4 Security Technical Implementation Guide
V2R52026-02-191 of 226 findings match
L1
Tri-Lab Operating System Stack (TOSS) 4 Security Technical Implementation Guide
22025-05-081 of 226 findings match
L1
Operating System — Mainframe
10 STIGs
Operating System — Mainframe
10 STIGsIBM zSecure Suite Security Technical Implementation Guide
V1R32025-03-052 of 11 findings match
M2
Mainframe Product Security Requirements Guide
V3R42025-09-102 of 194 findings match
M2
Mainframe Product Security Requirements Guide
32024-12-052 of 193 findings match
M2
CA IDMS Security Technical Implementation Guide
V2R12024-09-131 of 74 findings match
M1
IBM z/OS ACF2 Security Technical Implementation Guide
92025-06-241 of 226 findings match
M1
IBM z/OS ACF2 Security Technical Implementation Guide
V9R82026-03-091 of 225 findings match
M1
IBM z/OS RACF Security Technical Implementation Guide
V9R82026-03-091 of 222 findings match
M1
IBM z/OS RACF Security Technical Implementation Guide
92025-06-241 of 224 findings match
M1
Show 2 more STIGs in this category →Hide additional STIGs
IBM z/OS TSS Security Technical Implementation Guide
V9R82026-03-091 of 230 findings match
M1
IBM z/OS TSS Security Technical Implementation Guide
92025-06-241 of 231 findings match
M1
Network Device
16 STIGs
Network Device
16 STIGsDomain Name System (DNS) Security Requirements Guide
V4R22025-12-192 of 119 findings match
H1M1
Palo Alto Networks Prisma Cloud Compute Security Technical Implementation Guide
V2R32026-02-132 of 31 findings match
M2
Palo Alto Networks Prisma Cloud Compute Security Technical Implementation Guide
22024-12-062 of 31 findings match
M2
Cisco IOS Switch NDM Security Technical Implementation Guide
V3R72026-02-251 of 43 findings match
H1
Cisco IOS Switch NDM Security Technical Implementation Guide
32025-05-191 of 43 findings match
H1
Dell OS10 Switch NDM Security Technical Implementation Guide
V1R12024-12-111 of 39 findings match
M1
Fortinet FortiGate Firewall NDM Security Technical Implementation Guide
V1R52025-11-191 of 60 findings match
H1
Fortinet FortiGate Firewall NDM Security Technical Implementation Guide
12023-06-011 of 60 findings match
H1
Show 8 more STIGs in this category →Hide additional STIGs
HPE Alletra Storage ArcusOS Network Device Management Security Technical Implementation Guide
V1R12026-03-031 of 19 findings match
M1
HPE Nimble Storage Array NDM Security Technical Implementation Guide
V2R12024-06-201 of 20 findings match
H1
Juniper EX Series Switches Network Device Management Security Technical Implementation Guide
V2R42025-12-101 of 56 findings match
H1
Juniper EX Series Switches Network Device Management Security Technical Implementation Guide
22025-03-071 of 56 findings match
H1
Network Device Management Security Requirements Guide
V5R32025-02-111 of 104 findings match
M1
Network Device Management Security Requirements Guide
V5R42025-09-101 of 105 findings match
M1
Riverbed NetIM NDM Security Technical Implementation Guide
V1R12025-09-291 of 15 findings match
H1
RUCKUS ICX NDM Security Technical Implementation Guide
V1R12025-05-281 of 25 findings match
M1
Database
20 STIGs
Database
20 STIGsMongoDB Enterprise Advanced 7.x Security Technical Implementation Guide
V1R12024-09-273 of 50 findings match
H1M2
Crunchy Data Postgres 16 Security Technical Implementation Guide
V1R22026-02-272 of 111 findings match
M2
Crunchy Data Postgres 16 Security Technical Implementation Guide
12024-06-172 of 111 findings match
M2
Crunchy Data PostgreSQL Security Technical Implementation Guide
V3R12024-08-272 of 113 findings match
M2
Database Security Requirements Guide
V4R52026-02-262 of 142 findings match
M2
Database Security Requirements Guide
42024-12-042 of 142 findings match
M2
MariaDB Enterprise 10.x Security Technical Implementation Guide
V2R52026-03-022 of 107 findings match
M2
MariaDB Enterprise 10.x Security Technical Implementation Guide
22024-12-052 of 110 findings match
M2
Show 12 more STIGs in this category →Hide additional STIGs
MongoDB Enterprise Advanced 8.x Security Technical Implementation Guide
V1R12026-02-202 of 55 findings match
M2
MS SQL Server 2016 Instance Security Technical Implementation Guide
V3R62025-12-082 of 84 findings match
M2
MS SQL Server 2016 Instance Security Technical Implementation Guide
32025-06-112 of 101 findings match
M2
Redis Enterprise 6.x Security Technical Implementation Guide
V2R22024-09-042 of 71 findings match
M1L1
EnterpriseDB Postgres Advanced Server (EPAS) Security Technical Implementation Guide
V2R12024-08-271 of 118 findings match
M1
IBM DB2 V10.5 LUW Security Technical Implementation Guide
V2R12023-06-111 of 93 findings match
H1
MarkLogic Server v9 Security Technical Implementation Guide
V3R22024-09-041 of 80 findings match
M1
Microsoft SQL Server 2022 Instance Security Technical Implementation Guide
V1R42026-02-251 of 79 findings match
M1
Microsoft SQL Server 2022 Instance Security Technical Implementation Guide
12025-05-301 of 80 findings match
M1
Oracle Database 19c Security Technical Implementation Guide
V1R52026-02-251 of 96 findings match
H1
Oracle Database 19c Security Technical Implementation Guide
12025-06-241 of 96 findings match
H1
Oracle MySQL 8.0 Security Technical Implementation Guide
V2R22024-09-041 of 100 findings match
M1
Web / Application Server
24 STIGs
Web / Application Server
24 STIGsAdobe ColdFusion Security Technical Implementation Guide
V1R12025-12-193 of 84 findings match
M3
IBM WebSphere Traditional V9.x Security Technical Implementation Guide
V2R12026-02-263 of 77 findings match
M3
IBM WebSphere Traditional V9.x Security Technical Implementation Guide
12018-08-243 of 76 findings match
M3
Application Security and Development Security Technical Implementation Guide
62025-02-122 of 286 findings match
M2
Application Security and Development Security Technical Implementation Guide
V6R42025-09-092 of 286 findings match
M2
Application Server Security Requirements Guide
V4R42025-09-102 of 137 findings match
M2
Application Server Security Requirements Guide
42025-02-112 of 128 findings match
M2
JBoss Enterprise Application Platform 6.3 Security Technical Implementation Guide
V2R62025-02-202 of 67 findings match
H2
Show 16 more STIGs in this category →Hide additional STIGs
Apache Server 2.4 UNIX Server Security Technical Implementation Guide
V3R22024-12-041 of 47 findings match
M1
Apache Server 2.4 UNIX Server Security Technical Implementation Guide
32024-12-041 of 47 findings match
M1
Apache Server 2.4 Windows Server Security Technical Implementation Guide
V3R42026-02-251 of 49 findings match
M1
Apache Server 2.4 Windows Server Security Technical Implementation Guide
32025-02-121 of 54 findings match
M1
IBM WebSphere Liberty Server Security Technical Implementation Guide
22025-02-111 of 29 findings match
M1
IBM WebSphere Liberty Server Security Technical Implementation Guide
V2R42026-02-261 of 30 findings match
M1
Microsoft Exchange 2016 Edge Transport Server Security Technical Implementation Guide
V2R62024-12-061 of 68 findings match
M1
Microsoft Exchange 2016 Mailbox Server Security Technical Implementation Guide
V2R62023-12-181 of 64 findings match
M1
Microsoft Exchange 2019 Edge Server Security Technical Implementation Guide
V2R22024-12-061 of 68 findings match
M1
Microsoft Exchange 2019 Mailbox Server Security Technical Implementation Guide
V2R32025-05-141 of 66 findings match
M1
Red Hat Ansible Automation Controller Application Server Security Technical Implementation Guide
V2R42025-11-201 of 16 findings match
M1
Red Hat Ansible Automation Controller Application Server Security Technical Implementation Guide
22025-05-231 of 16 findings match
M1
Red Hat Ansible Automation Controller Web Server Security Technical Implementation Guide
V2R32025-11-201 of 28 findings match
M1
Red Hat Ansible Automation Controller Web Server Security Technical Implementation Guide
22024-08-271 of 28 findings match
M1
Web Server Security Requirements Guide
V4R42025-09-101 of 126 findings match
M1
Web Server Security Requirements Guide
42025-02-121 of 124 findings match
M1
Virtualization / Container
15 STIGs
Virtualization / Container
15 STIGsContainer Platform Security Requirements Guide
V2R42025-09-104 of 188 findings match
M4
Container Platform Security Requirements Guide
22025-05-154 of 187 findings match
M4
Red Hat OpenShift Container Platform 4.x Security Technical Implementation Guide
22025-05-153 of 83 findings match
M3
Red Hat OpenShift Container Platform 4.x Security Technical Implementation Guide
V2R52025-12-043 of 83 findings match
M3
Mirantis Kubernetes Engine Security Technical Implementation Guide
V2R12024-08-272 of 44 findings match
M2
Rancher Government Solutions RKE2 Security Technical Implementation Guide
V2R62026-02-132 of 21 findings match
M2
Rancher Government Solutions RKE2 Security Technical Implementation Guide
22024-12-202 of 24 findings match
M2
Virtual Machine Manager Security Requirements Guide
V2R32025-09-102 of 198 findings match
H1M1
Show 7 more STIGs in this category →Hide additional STIGs
Kubernetes Security Technical Implementation Guide
V2R62026-02-121 of 92 findings match
M1
Nutanix Acropolis GPOS Security Technical Implementation Guide
V1R12026-02-241 of 106 findings match
M1
Virtual Machine Manager Security Requirements Guide
22024-12-061 of 193 findings match
M1
VMware NSX-T Manager NDM Security Technical Implementation Guide
V1R32023-06-221 of 23 findings match
H1
VMware vSphere 7.0 vCenter Appliance Photon OS Security Technical Implementation Guide
V1R42024-12-161 of 113 findings match
M1
VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 Security Technical Implementation Guide
V2R12024-07-111 of 106 findings match
M1
VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 Security Technical Implementation Guide
V1R12023-10-291 of 104 findings match
M1
Endpoint Security Management
13 STIGs
Endpoint Security Management
13 STIGsUnified Endpoint Management Server Security Requirements Guide
22024-12-092 of 137 findings match
H1M1
Unified Endpoint Management Server Security Requirements Guide
V2R42025-09-102 of 138 findings match
H1M1
Arctic Wolf CylanceON-PREM Security Technical Implementation Guide
V1R12025-06-111 of 16 findings match
M1
Central Log Server Security Requirements Guide
V3R42026-02-121 of 127 findings match
H1
Forescout Network Device Management Security Technical Implementation Guide
V2R32025-06-121 of 42 findings match
H1
HYCU Protege Security Technical Implementation Guide
V1R22026-03-041 of 55 findings match
M1
HYCU Protege Security Technical Implementation Guide
12024-10-291 of 55 findings match
M1
ISEC7 Sphere Security Technical Implementation Guide
V3R12024-08-201 of 34 findings match
H1
Show 5 more STIGs in this category →Hide additional STIGs
Ivanti EPMM Server Security Technical Implementation Guide
V3R12024-07-301 of 26 findings match
H1
Ivanti Sentry 9.x NDM Security Technical Implementation Guide
V3R12024-09-251 of 26 findings match
H1
Tanium 7.x Application on TanOS Security Technical Implementation Guide
V2R22025-02-111 of 75 findings match
M1
Tanium 7.x Operating System on TanOS Security Technical Implementation Guide
V2R22025-02-111 of 31 findings match
M1
Tanium 7.x Security Technical Implementation Guide
V2R32025-05-141 of 98 findings match
M1
Productivity Application
8 STIGs
Productivity Application
8 STIGsAdobe Acrobat Professional DC Continuous Track Security Technical Implementation Guide
V2R12021-06-221 of 23 findings match
H1
Adobe Acrobat Reader DC Continuous Track Security Technical Implementation Guide
V2R12021-06-221 of 26 findings match
H1
Google Chrome Current Windows Security Technical Implementation Guide
V2R112025-05-151 of 46 findings match
M1
Microsoft Edge Security Technical Implementation Guide
V2R52026-02-251 of 61 findings match
H1
Microsoft Edge Security Technical Implementation Guide
22025-05-151 of 59 findings match
H1
Mozilla Firefox Security Technical Implementation Guide
V6R72025-11-251 of 34 findings match
H1
Mozilla Firefox Security Technical Implementation Guide
62025-02-111 of 34 findings match
H1
Soaring Software Solutions TCMax 9.x Security Technical Implementation Guide
V1R12026-03-051 of 17 findings match
M1
Uncategorized
1 STIG
Uncategorized
1 STIGMicrosoft Internet Explorer 11 Security Technical Implementation Guide
22023-12-011 of 137 findings match
H1