Documentation - V-222510

V-222510

Application Security and Development Security Technical Implementation Guide

CAT II

Title

The application must prohibit user installation of software without explicit privileged status.

Description

<VulnDiscussion>Allowing regular users to install software without explicit privileges creates the risk that untested or potentially malicious software will be installed on the system. Explicit privileges (escalated or administrative privileges) provide the regular user with explicit capabilities and control that exceeds the rights of a regular user. Application functionality will vary, and while users are not permitted to install unapproved applications, there may be instances where the organi...

Fix Text (Documentation Requirement)

Configure the application to prohibit user installation of software without explicit permission.

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel