| Vuln ID | Severity | Asset | STIG | Title | Status | Doc Status | Assigned To | Actions |
|---|---|---|---|---|---|---|---|---|
| V-206578 | CAT II | MONT-DB-002 | Database Security Requirements Guide | The DBMS must provide non-privileged users with er... | - | |||
Check TextCheck DBMS settings and custom database code to verify that error messages do not contain information beyond what is needed for troubleshooting the issue. If database errors contain PII data, sensitive business data, or information useful for identifying the host system or database structure, this is a finding. Fix TextConfigure DBMS settings, custom database code, and associated application code not to divulge sensitive information or information useful for system identification in error messages. CommentsNon-privileged users do not have direct access to the DBMS where database error messages are displayed. The application displays errors messages that only provide information for corrective action. The DBMS is not accessible by direct remote connection or URL.
Source: Montford Point ShipCLIP DB V4R4.ckl
Scan Date: 2026-03-06T12:50:21.809591
Technology Area: Database Review
|
||||||||