Mission and Overview
NVD is the U.S. government repository of standards based vulnerability management data. This data enables automation of vulnerability management, security measurement, and compliance (e.g. FISMA).
Resource Status
NVD contains:

Last updated: 5/3/2016 7:59:49 AM

CVE Publication rate: 19.4

Email List

NVD provides four mailing lists to the public. For information and subscription instructions please visit NVD Mailing Lists

Workload Index
Vulnerability Workload Index: 9.09
About Us
NVD is a product of the NIST Computer Security Division and is sponsored by the Department of Homeland Security's National Cyber Security Division. It supports the U.S. government multi-agency (OSD, DHS, NSA, DISA, and NIST) Information Security Automation Program. It is the U.S. government content repository for the Security Content Automation Protocol (SCAP).

National Checklist Program Repository

 

The National Checklist Program (NCP), defined by the NIST SP 800-70 Rev. 3, is the U.S. government repository of publicly available security checklists (or benchmarks) that provide detailed low level guidance on setting the security configuration of operating systems and applications. NCP is migrating its repository of checklists to conform to the Security Content Automation Protocol (SCAP). SCAP enables standards based security tools to automatically perform configuration checking using NCP checklists. For more information relating to the NCP please visit the information page or the glossary of terms.

Search for Checklist using the fields below. The keyword search will search across the name, and summary.


There are 361 matching records. Displaying matches 41 through 60.
Tier Target Product Product Category Authority Last Modified Date Checklist Name (Version) Resources
III Microsoft Publisher 2013 Desktop Application Defense Information Systems Agency 06/22/2015 Publisher 2013 STIG (Version 1, Release 2)
III Microsoft SharePoint Designer 2013 Desktop Application Defense Information Systems Agency 06/22/2015 Sharepoint Designer 2013 STIG (Version 1, Release 2)
III Microsoft Visio 2013 Desktop Application Defense Information Systems Agency 06/22/2015 Visio 2013 STIG (Version 1, Release 2)
III* Microsoft Windows 10 Operating System Defense Information Systems Agency 05/02/2016 Windows 10 STIG (Version 1, Release 3)
III Microsoft Windows 2000 Operating System Defense Information Systems Agency 01/04/2015 Windows 2000 Security Checklist (Version 6, Release 1.19)
III* Microsoft Windows 7 Operating System Defense Information Systems Agency 05/02/2016 Microsoft Windows 7 (Version 1, Release 22)
III* Microsoft Windows 8 x86 (32-bit)
Microsoft Windows 8 x64 (64-bit)
Microsoft Windows 8.1 (x64)
Microsoft Windows 8.1 (x86)
Operating System Defense Information Systems Agency 05/02/2016 Windows 8/8.1 STIG (Version 1, Release 13)
III Microsoft Windows Server 2003
Microsoft Windows Server 2003 Service Pack 2
Microsoft Windows Server 2003 Service Pack 3
Microsoft Windows Server 2003 Service Pack 1
Operating System Defense Information Systems Agency 06/03/2015 Windows 2003 DC STIG Benchmark (Version 6, Release 1.39)
III Microsoft Windows Server 2003
Microsoft Windows Server 2003 Service Pack 2
Microsoft Windows Server 2003 Service Pack 3
Microsoft Windows Server 2003 Service Pack 1
Operating System Defense Information Systems Agency 06/03/2015 Windows 2003 MS STIG Benchmark (Version 6, Release 1.39)
III* Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008 r2 Itanium
Microsoft Windows Server 2008 r2 x64
Microsoft Windows Server 2008 R2 Service Pack 1
Microsoft Windows Server 2008 r2 Service Pack 1 Itanium
Microsoft Windows Server 2008 r2 x64 Service Pack 1
Operating System Defense Information Systems Agency 05/02/2016 Microsoft Windows 2008 R2 STIG (Version 1, Release 18)
III Microsoft Windows Server 2012 Operating System Defense Information Systems Agency 06/02/2015 Windows 2012 (Version 1, Release 4)
III* Microsoft Windows Server 2012/2012 R2 Defense Information Systems Agency 05/02/2016 Windows Server 2012 / 2012 R2 STIG (Version 2, Release 4)
III Microsoft Windows XP Operating System Defense Information Systems Agency 01/15/2015 Windows XP STIG (Version 6, Release 1.34)
III Microsoft Windows XP Operating System NIST, Computer Security Division 09/12/2014 NIST SP 800-68 (R1.2.0)
III Microsoft Word 2013 Desktop Application Defense Information Systems Agency 06/22/2015 Word 2013 STIG (Version 1, Release 3)
III Office System 2013 Desktop Client Defense Information Systems Agency 09/11/2015 Office System 2013 STIG (Version1, Release 4)
III Oracle Weblogic Server Web Server National Security Agency
MITRE
07/11/2011 Oracle Weblogic Server (11G)
III* Red Hat Enterprise Linux 5 Operating System Defense Information Systems Agency 04/29/2016 Red Hat 5 STIG (Version 1, Release 14)
III Red Hat Enterprise Linux 5 Operating System Department of Defense 02/23/2011 DoD Consensus Security Configuration Checklist for Red Hat Enterprise Linux 5 (2.0)
III* Red Hat Enterprise Linux 6 Operating System Defense Information Systems Agency 05/02/2016 Red Hat 6 STIG (Version 1, Release 11)
* This checklist is still undergoing review for inclusion into the NCP at this tier ranking.