National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

    NCP Checklist

JBoss Enterprise Application Platform (EAP) 5.x Checklist Details (Checklist Revisions)

SCAP 1.1 Content:

Supporting Resources:

    Target:

    Target CPE Name Product Category
    Red Hat JBoss Enterprise Application Platform 5.0.0 cpe:/a:redhat:jboss_enterprise_application_platform:5.0.0 (View CVEs)
      Red Hat JBoss Enterprise Application Platform 5.0.1 cpe:/a:redhat:jboss_enterprise_application_platform:5.0.1 (View CVEs)
        Red Hat JBoss Enterprise Application Platform 5.1.0 cpe:/a:redhat:jboss_enterprise_application_platform:5.1.0 (View CVEs)
          Red Hat JBoss Enterprise Application Platform 5.1.1 cpe:/a:redhat:jboss_enterprise_application_platform:5.1.1 (View CVEs)
          • Web Server
          • Application Server
          Red Hat JBoss Enterprise Application Platform 5.1.2 cpe:/a:redhat:jboss_enterprise_application_platform:5.1.2 (View CVEs)
          • Web Server
          • Application Server

          Checklist Highlights

          Checklist Name:
          JBoss Enterprise Application Platform (EAP)
          Checklist ID:
          430
          Version:
          5.x
          Type:
          Compliance
          Review Status:
          Archived
          Authority:
          Software Vendor: Red Hat
          Original Publication Date:
          06/08/2012
          Checklist Group:
          View

          Checklist Summary:

          Summary can be found in the checklist

          Checklist Role:

          • Application Server

          Known Issues:

          There are no known issues

          Target Audience:

          JBoss Enterprise Application Platform 5.x Administrators

          Target Operational Environment:

          • Managed

          Testing Information:

          This benchmark provides security guidance on JBoss EAP 5 running on Red Hat Enterprise Linux. (1) RHEL 5, i386 and x86_64 are fully compatable with XCCDFExec v1.1.4 Build 19, SPAWAR Compliance Checker v3.0.2 and OpenSCAP v0.8.2 (2) RHEL 6, i386 and x86_64 are fully compatable with SPAWAR Compliance Checker v3.0.2 and OpenSCAP v0.8.2. Additional dependencies needed for XCCDFEXEC v1.1.4 Build 19.

          Regulatory Compliance:

          The content maps to NIST 800.53 and DISA 8500.2 controls.

          Comments/Warnings/Miscellaneous:

          Not Applicable

          Disclaimer:

          No disclaimer

          Product Support:

          Execution of the checklist does not impact support

          Point of Contact:

          Questions, comments, suggestions, and problem reports can be submitted to https://fedorahosted.org/scap-security-guide/

          Sponsor:

          Red Hat sponsored building and submission of the content and it is under review by multiple government organizations

          Licensing:

          Open Source. Released under the GNU Lesser General Public License v3.

          Change History: 

          Archived - 10/23/2017

          Dependency/Requirements:

          URL Description

          References:

          Reference URL Description

          NIST checklist record last modified on 10/23/2017

          * This checklist is still undergoing review for inclusion into the NCP.