Performance Charts must only run one webapp.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-256619 | VCPF-70-000009 | SV-256619r888348_rule | CCI-001749 | medium |
| Description | ||||
| VMware ships Performance Charts on the vCenter Server Appliance (VCSA)with one webapp. Any other path is potentially malicious and must be removed. | ||||
| STIG | Date | |||
| VMware vSphere 7.0 vCenter Appliance Perfcharts Security Technical Implementation Guide | 2023-02-21 | |||
Details
Check Text (C-256619r888348_chk)
At the command prompt, run the following command:
# ls -A /usr/lib/vmware-perfcharts/tc-instance/webapps
Expected result:
statsreport
If the output does not match the expected result, this is a finding.
Fix Text (F-60237r888347_fix)
For each unexpected directory returned in the check, run the following command:
# rm /usr/lib/vmware-perfcharts/tc-instance/webapps/<NAME>
Restart the service with the following command:
# vmon-cli --restart perfcharts