National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Security Content Automation Protocol (SCAP) 1.2 Product Validation Record

Validation Number: 127 Center for Internet Security
Vendor: Center for Internet Security
Product Name: CIS-CAT Pro Assessor (formerly Configuration Assessment Tool (CIS-CAT))
Product Major Version: 3
Product Version Tested: 3.0.00
Tested Platforms:
Microsoft Windows 7, 64 bit
Microsoft Windows 7, 32 bit
Microsoft Windows Vista, SP2
Microsoft Windows XP Pro, SP3
Red Hat Enterprise Linux 5 Desktop, 64 bit
Red Hat Enterprise Linux 5 Desktop, 32 bit
SCAP 1.2 Capabilities:
Authenticated Configuration Scanner
Common Vulnerabilities and Exposures (CVE)
Validated Product
Vendor Provided SCAP Information
Dates Tested: 9/13/2013 12:00:00 AM - 3/18/2014 12:00:00 AM
Report Submitted: 3/24/2014 12:00:00 AM
DTR Version: NIST IR 7511 Revision 3
Validation Test Suite:
version 1-2.0.0.0 (December 2012 release includes R600-1.2.0.0.1, R1900-1.2.0.0.2, R3300-1.2.0.0.3 out of cycle updates)
version 1-2.0.1.0 (August 2013 release)
version 1-2.0.2.0 (March 2014 release)
version 1-2.0.3.0 (April 2015 release)
version 1-­2.1.0.0 (April 2016 release)
version 1-­2.1.1.0 (June 2016 release)
Previous Validation
SCAP and Product Version:
SCAP 1.0 – CIS-CAT 2.2
NVLAP Lab: 200423-0 - BAH Testing Lab
Validation Date: 3/24/2014 12:00:00 AM
Comments:

Exceptions were granted for validation tests that contained bugs which were subsequently fixed in version 1-2.0.2.0 of the validation test suite. The validation test content change log version 1-2.0.2.0 contains the complete list.

Note: The Configuration Assessment Tool (CIS-CAT) product has been renamed CIS-CAT Pro Assessor.

Note: The vendor assertions document (aka Vendor Provided SCAP Information) was provided by the vendor. The descriptions do not imply endorsement by the U.S. Government or NIST.