STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 2 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to IBM WebSphere Traditional V9.x Security Technical Implementation Guide

V-255892

CAT II (Medium)

The WebSphere Application Server must apply the latest security fixes.

Rule ID

SV-255892r1137612_rule

STIG

IBM WebSphere Traditional V9.x Security Technical Implementation Guide

Version

V2R1

CCIs

CCI-002605

Discussion

Security vulnerabilities are often addressed by testing and applying the latest security patches and fix packs. Latest fixpacks can be found at: http://www-01.ibm.com/support/docview.wss?uid=swg27009661

Check Content

Use the admin console to determine the WebSphere version.

Review patch level and fix pack.

If the most recent patches/fix packs have not been applied, this is a finding.

Fix Text

Obtain WebSphere product security and patch support.

Test and apply the latest applicable WebSphere security fixes.