The VMM must monitor the use of maintenance tools that execute with increased privilege.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-264323 | SRG-OS-000755-VMM-000220 | SV-264323r984284_rule | CCI-004188 | medium |
| Description | ||||
| Maintenance tools that execute with increased system privilege can result in unauthorized access to organizational information and assets that would otherwise be inaccessible. | ||||
| STIG | Date | |||
| Virtual Machine Manager Security Requirements Guide | 2024-12-06 | |||
Related Frameworks
2 paths across 2 frameworks
Related Frameworks
NIST 800-531 mapping
MA-3(5)
1.00
- DISA · 2 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI1 mapping
CCI-004188
1.00
- DISA · 2 · disa_xccdf · related
Details
Check Text (C-264323r984284_chk)
Verify the VMM is configured to monitor the use of maintenance tools that execute with increased privilege.
If the VMM is not configured to monitor the use of maintenance tools that execute with increased privilege, this is a finding.
Fix Text (F-68144r984283_fix)
Configure the VMM to monitor the use of maintenance tools that execute with increased privilege.