V-204742
SV-204742r960960_rule
CAT II
The application server must be capable of reverting to the last known good configuration in the event of failed installations and upgrades.
From: Application Server Security Requirements Guide (V4R4)
Description
<VulnDiscussion>Any changes to the components of the application server can have significant effects on the overall security of the system.
In order to ensure a prompt response to failed application installations and application server upgrades, the application server must provide an automated rollback capability that allows the system to be restored to a previous known good configuration state prior to the application installation or application server upgrade.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
Check Procedure
Check the application server documentation and configuration to determine if the application server provides an automated rollback capability to a known good configuration in the event of a failed installation and upgrade.
If the application server is not configured to meet this requirement, this is a finding.
Fix Text
Configure the application server to automatically rollback to a known good configuration in the event of failed application installations and application server upgrades.
CCI Reference
CCI-001190- Created
- 2026-04-07 20:08:11
- Last Updated
- 2026-04-07 20:08:11