V-206578
CAT IIThe DBMS must provide non-privileged users with error messages that provide information necessary for corrective actions without revealing information that could be exploited by adversaries.
- Ships Affected
- 1
- Total Findings
- 1
- Open
- 0
- Closed
- 1
Check Text
Check DBMS settings and custom database code to verify that error messages do not contain information beyond what is needed for troubleshooting the issue.
If database errors contain PII data, sensitive business data, or information useful for identifying the host system or database structure, this is a finding.
Fix Text
Configure DBMS settings, custom database code, and associated application code not to divulge sensitive information or information useful for system identification in error messages.
STIG Reference
- STIG
- Database Security Requirements Guide
- Version
- 4
- Release
- 5
- Rule ID
- SV-206578r961167_rule
All Occurrences
This vulnerability appears on 1 ship(s)
| Ship | Hull # | Source File | Status | Assigned To | Scan Date | Actions |
|---|---|---|---|---|---|---|
| USNS MONTFORD POINT | T-ESD-1 | Montford Point ShipCLIP DB V4R4.ckl | Unassigned | 2026-03-06T12:50:21.809591 | View in Context |