STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← Back to JBoss Enterprise Application Platform 6.3 Security Technical Implementation Guide

V-213521

CAT II (Medium)

JBoss QuickStarts must be removed.

Rule ID

SV-213521r960963_rule

STIG

JBoss Enterprise Application Platform 6.3 Security Technical Implementation Guide

Version

V2R6

CCIs

CCI-000381

Discussion

JBoss QuickStarts are demo applications that can be deployed quickly. Demo applications are not written with security in mind and often open new attack vectors. QuickStarts must be removed.

Check Content

Examine the <JBOSS_HOME> folder.  If a jboss-eap-6.3.0-GA-quickstarts folder exits, this is a finding.

Fix Text

Delete the QuickStarts folder.