The network-facing component of a network attached KVM switch must be compliant with the current Network Infrastructure STIG.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-6707 | KVM03.003.00 | SV-6902r2_rule | DCCS-1 DCCS-2 | High |
| Description |
|---|
| If the network facing components of a network attached KVM switch are not in compliance with the Network Infrastructure STIG the KVM switch could expose the network to vulnerabilities that could lead to a denial of service caused by the disruption of the network or a compromise of sensitive data. |
| STIG | Date |
|---|---|
| Keyboard Video and Mouse Switch STIG | 2015-12-09 |
Details
| Check Text ( C-2713r2_chk ) |
|---|
| The reviewer will interview the ISSO to verify a network review has been performed on the network the KVM switch is attached and all findings discovered during the network review dealing with the KVM switch have been closed. If a network review has not been performed on the network attached KVM switch, this is a finding. |
| Fix Text (F-6314r2_fix) |
|---|
| Perform a self-assessment on the network the KVM switch is attached or request DISA to schedule and perform a Network review. Following the review close all findings. |