Mission and Overview
NVD is the U.S. government repository of standards based vulnerability management data. This data enables automation of vulnerability management, security measurement, and compliance (e.g. FISMA).
Resource Status
NVD contains:

Last updated: 10/24/2014 2:11:51 PM

CVE Publication rate: 51.3

Email List

NVD provides four mailing lists to the public. For information and subscription instructions please visit NVD Mailing Lists

Workload Index
Vulnerability Workload Index: 15.21
About Us
NVD is a product of the NIST Computer Security Division and is sponsored by the Department of Homeland Security's National Cyber Security Division. It supports the U.S. government multi-agency (OSD, DHS, NSA, DISA, and NIST) Information Security Automation Program. It is the U.S. government content repository for the Security Content Automation Protocol (SCAP).

National Checklist Program Repository

 

The National Checklist Program (NCP), defined by the NIST SP 800-70 Rev. 2, is the U.S. government repository of publicly available security checklists (or benchmarks) that provide detailed low level guidance on setting the security configuration of operating systems and applications. NCP is migrating its repository of checklists to conform to the Security Content Automation Protocol (SCAP). SCAP enables standards based security tools to automatically perform configuration checking using NCP checklists. For more information relating to the NCP please visit the information page or the glossary of terms.

Search for Checklist using the fields below. The keyword search will search across the name, and summary.


There are 253 matching records. Displaying matches 41 through 60.
Tier Target Product Product Category Authority Publication Date Checklist Name (Version) Resources
III
  • Microsoft Internet Explorer 9
  • Web Browser
Microsoft Corporation 10/19/2011 Microsoft Security Compliance Manager Internet Explorer 9 (1.0)
III
  • Microsoft Office 2007
  • Microsoft Office 2007 Service Pack 2
  • Office Suite
Microsoft Corporation 02/23/2011 Microsoft Security Compliance Manager - Microsoft Office 2007 SP2 (1.0)
III
  • Microsoft Office 2010 Service Pack 1
  • Office Suite
Microsoft Corporation 11/10/2010 Microsoft Security Compliance Manager - Microsoft Office 2010 Service Pack 1 (1.0)
III
  • Microsoft Office 2013
  • Office Suite
Microsoft Corporation 08/08/2014 Microsoft Security Compliance Manager - Microsoft Office 2013 (1.0)
III
  • Microsoft Windows 7
  • Operating System
Microsoft Corporation 02/23/2011 Microsoft Security Compliance Manager - Windows 7 Service Pack 1 (1.0)
III
  • Microsoft Windows 8
  • Operating System
Microsoft Corporation 03/28/2013 Microsoft Security Compliance Manager - Windows 8 (1.0)
III*
  • Microsoft Windows 8.1 (x64)
  • Microsoft Windows 8.1 (x86)
  • Operating System
Microsoft Corporation 09/29/2014 Microsoft Security Compliance Manager - Windows 8.1 (1.0)
III
  • Microsoft Windows Server 2003
  • Microsoft Windows Server 2003 Service Pack 2
  • Operating System
Microsoft Corporation 02/23/2011 Microsoft Security Compliance Manager - Windows Server 2003 SP2 (1.0)
III
  • Microsoft Windows Server 2008 R2 Service Pack 1
  • Operating System
Microsoft Corporation 02/23/2011 Microsoft Security Compliance Manager - Microsoft Windows Server 2008 R2 Service Pack 1 (1.0)
III
  • Microsoft Windows Server 2008 Service Pack 2
  • Operating System
Microsoft Corporation 02/23/2011 Microsoft Security Compliance Manager - Windows Server 2008 SP2 (1.0)
III*
  • Microsoft Windows Server 2012 R2
  • Operating System
Microsoft Corporation 09/29/2014 Microsoft Security Compliance Manager - Windows Server 2012 R2 (1.0)
III
  • Microsoft Windows Server 2012 R2
  • Operating System
Microsoft Corporation 10/30/2013 Microsoft Security Compliance Manager - Windows Server 2012 (1.0)
III
  • Microsoft Windows Vista Service Pack 2
  • Operating System
Microsoft Corporation 02/23/2011 Microsoft Security Compliance Manager - Windows Vista SP2 (1.0)
III
  • Microsoft Windows XP Service Pack 3
  • Operating System
Microsoft Corporation 02/23/2011 Microsoft Security Compliance Manager - Windows XP SP3 (1.0)
III
  • Red Hat JBOSS Enterprise Application Platform 5.0.0
  • Red Hat JBOSS Enterprise Application Platform 5.0.1
  • Red Hat JBOSS Enterprise Application Platform 5.1.0
  • Red Hat JBoss Enterprise Application Platform 5.1.1
  • Red Hat JBoss Enterprise Application Platform 5.1.2
  • Web Server
  • Application Server
Red Hat 06/08/2012 JBoss Enterprise Application Platform (EAP) (5.x)
III
  • Microsoft Windows XP
  • Operating System
CyberESI 06/06/2011 Suspicious file names and file locations (v0.3)
II
  • AirWatch Mobile Device Management (MDM) Software 6.5
  • Mobile Solution
Defense Information Systems Agency 04/16/2014 AirWatch MDM Software 6.5 STIG (Version 1)
II
  • Apache HTTP Server 2.0
  • Web Server
Defense Information Systems Agency 11/23/2011 Apache 2.0 STIG - UNIX (Version 1, Release 1)
II
  • Apache HTTP Server 2.0
  • Web Server
Defense Information Systems Agency 11/23/2011 Apache 2.0 STIG - Windows (Version 1, Release 1)
II
  • Apache HTTP Server 2.2
  • Web Server
Defense Information Systems Agency 11/23/2011 Apache 2.2 STIG - UNIX (Version 1, Release 4)
* This checklist is still undergoing review for inclusion into the NCP at this tier ranking.