z/OS Catalog Solutions for TSS STIG


Version / Release: V6R4

Published: 2015-01-15

Updated At: 2018-09-23 16:06:39




Severity Open Not Reviewed Not Applicable Not a Finding
Overall 0 0 0 0
Low 0 0 0 0
Medium 0 0 0 0
High 0 0 0 0
Drop CKL or SCAP (XCCDF) results here.

    Vuln Rule Version CCI Severity Title Description Status Finding Details Comments
    SV-19582r1_rule ZCSLT000 CCI-000213 MEDIUM Catalog Solution Install data sets are not properly protected. Catalog Solutions is a very powerful tool that can pose risks if not properly controlled. If security is not properly implemented, the users of the product could present data integrity exposures, bypass security for catalog datasets, other VSAM files and
    SV-19623r2_rule ZCSLT020 CCI-000035 MEDIUM Catalog Solutions resources must be properly defined and protected. Catalog Solutions can run with sensitive system privileges, and potentially can circumvent system controls. Failure to properly control access to product resources could result in the compromise of the operating system environment, and compromise the con