The DBMS must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-265943 | MD7X-00-008000 | SV-265943r1028615_rule | CCI-001762 | medium |
| Description | ||||
| Use of nonsecure network functions, ports, protocols, and services exposes the system to avoidable threats. | ||||
| STIG | Date | |||
| MongoDB Enterprise Advanced 7.x Security Technical Implementation Guide | 2024-09-27 | |||
Related Frameworks
3 paths across 3 frameworks
Related Frameworks
NIST 800-531 mapping
CM-7(1)
1.00
- DISA · V1R1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
NIST 800-1711 mapping
3.4.7
1.00
- DISA · V1R1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI1 mapping
CCI-001762
1.00
- DISA · V1R1 · disa_xccdf · related
Details
Check Text (C-265943r1028615_chk)
Review the network functions, ports, protocols, and services supported by the DBMS.
If any protocol is prohibited by the PPSM guidance and is enabled, this is a finding.
Fix Text (F-69765r1028614_fix)
Deploy a DBMS capable of disabling a network function, port, protocol, or service prohibited by the PPSM guidance.
Disable each prohibited network function, port, protocol, or service.
More information for MongoDB port management can be found at the following link:
https://www.mongodb.com/docs/manual/reference/default-mongodb-port/