← Back to Unified Endpoint Management Server Security Requirements Guide

V-234603

CAT II (Medium)

The UEM server must remove old software components after updated versions have been installed.

Rule ID

SV-234603r961677_rule

STIG

Unified Endpoint Management Server Security Requirements Guide

Version

V2R4

CCIs

CCI-002617

Discussion

Previous versions of software components that are not removed from the information system after updates have been installed may be exploited by adversaries. Some information technology products may remove older versions of software automatically from the information system. If the update is due to a security issue with the old version of the app, the old version is not reinstalled. If rollback files are used by the server, they must be stored so as to not be easily accessible to the production system, or cannot be accidentally installed on the operational system, and then must be deleted after a short period of time defined by the organization.

Check Content

Verify the UEM server removes old software components after updated versions have been installed.

If the UEM server does not remove old software components after updated versions have been installed, this is a finding.

Fix Text

Configure the UEM server to remove old software components after updated versions have been installed.