Performance Charts must only run one webapp.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-256619 | VCPF-70-000009 | SV-256619r888348_rule | CCI-001749 | medium |
| Description | ||||
| VMware ships Performance Charts on the vCenter Server Appliance (VCSA)with one webapp. Any other path is potentially malicious and must be removed. | ||||
| STIG | Date | |||
| VMware vSphere 7.0 vCenter Appliance Perfcharts Security Technical Implementation Guide | 2023-02-21 | |||
Related Frameworks
2 paths across 2 frameworks
Related Frameworks
NIST 800-531 mapping
CM-5(3)
1.00
- DISA · V1R1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI1 mapping
CCI-001749
1.00
- DISA · V1R1 · disa_xccdf · related
Details
Check Text (C-256619r888348_chk)
At the command prompt, run the following command:
# ls -A /usr/lib/vmware-perfcharts/tc-instance/webapps
Expected result:
statsreport
If the output does not match the expected result, this is a finding.
Fix Text (F-60237r888347_fix)
For each unexpected directory returned in the check, run the following command:
# rm /usr/lib/vmware-perfcharts/tc-instance/webapps/<NAME>
Restart the service with the following command:
# vmon-cli --restart perfcharts